CVE-2012-10019 in Front-End Editor Pluginالمعلومات

الملخص

بحسب MITRE • 19/07/2025

The Front End Editor plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation via the upload.php file in versions before 2.3. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected sites server which may make remote code execution possible.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

إفشاء

19/07/2025

الاعتدال

تمت الموافقة

إدخال

VDB-316959

CPE

جاهز

CWE

CWE-434 (مؤكد)

CVSS

9.8 (CNA)

EPSS

0.79522

KEV

لا

النشاطات

منخفض جدًا

القطاع

Hostingprovider

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-10019
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-10019
CVE Details	https://www.cvedetails.com/cve/CVE-2012-10019/

التالي ▸نظرة عامة ◂ السابق

Do you know our Splunk app?

Download it now for free!