{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-3234", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-04-03T18:14:00.849Z", "datePublished": "2025-06-14T05:32:01.040Z", "dateUpdated": "2026-04-08T16:32:24.218Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:32:24.218Z"}, "affected": [{"vendor": "ninjateam", "product": "File Manager Pro \u2013 Filester", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "1.8.8", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The File Manager Pro \u2013 Filester plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, 1.8.8. This makes it possible for authenticated attackers, with Administrator-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible. Administrators have the ability to extend file manager usage privileges to lower-level users including subscribers, which would make this vulnerability more severe on such sites."}], "title": "File Manager Pro \u2013 Filester <= 1.8.8 - Authenticated (Administrator+) Arbitrary File Upload", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/00df02cd-b4d3-477a-86ee-aa2f9b5216e8?source=cve"}, {"url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3310066%40filester%2Ftrunk&old=3294389%40filester%2Ftrunk&sfp_email=&sfph_mail="}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-434 Unrestricted Upload of File with Dangerous Type", "cweId": "CWE-434", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "baseScore": 7.2, "baseSeverity": "HIGH"}}], "credits": [{"lang": "en", "type": "finder", "value": "TANG Cheuk Hei"}], "timeline": [{"time": "2025-06-13T17:25:06.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-06-16T16:49:03.967418Z", "id": "CVE-2025-3234", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-06-17T18:40:09.553Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-3234", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-06-16T16:49:03.967418Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-06-16T16:49:05.092Z"}}], "cna": {"title": "File Manager Pro \u2013 Filester <= 1.8.8 - Authenticated (Administrator+) Arbitrary File Upload", "credits": [{"lang": "en", "type": "finder", "value": "TANG Cheuk Hei"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 7.2, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"}}], "affected": [{"vendor": "ninjateam", "product": "File Manager Pro \u2013 Filester", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "1.8.8"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-06-13T17:25:06.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/00df02cd-b4d3-477a-86ee-aa2f9b5216e8?source=cve"}, {"url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3310066%40filester%2Ftrunk&old=3294389%40filester%2Ftrunk&sfp_email=&sfph_mail="}], "descriptions": [{"lang": "en", "value": "The File Manager Pro \u2013 Filester plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, 1.8.8. This makes it possible for authenticated attackers, with Administrator-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible. Administrators have the ability to extend file manager usage privileges to lower-level users including subscribers, which would make this vulnerability more severe on such sites."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-434", "description": "CWE-434 Unrestricted Upload of File with Dangerous Type"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:32:24.218Z"}}}, "cveMetadata": {"cveId": "CVE-2025-3234", "state": "PUBLISHED", "dateUpdated": "2026-04-08T16:32:24.218Z", "dateReserved": "2025-04-03T18:14:00.849Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-06-14T05:32:01.040Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The File Manager Pro \u2013 Filester plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, 1.8.8. This makes it possible for authenticated attackers, with Administrator-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible. Administrators have the ability to extend file manager usage privileges to lower-level users including subscribers, which would make this vulnerability more severe on such sites."}, {"lang": "es", "value": "El complemento File Manager Pro \u2013 Filester para WordPress es vulnerable a la carga de archivos arbitrarios debido a la falta de validaci\u00f3n del tipo de archivo en todas las versiones hasta la 1.8.8 incluida. Esto permite que atacantes autenticados, con acceso de administrador o superior, carguen archivos arbitrarios en el servidor del sitio afectado, lo que podr\u00eda posibilitar la ejecuci\u00f3n remota de c\u00f3digo. Los administradores pueden extender los privilegios de uso del administrador de archivos a usuarios de nivel inferior, incluidos los suscriptores, lo que agravar\u00eda esta vulnerabilidad en dichos sitios."}], "id": "CVE-2025-3234", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 5.9, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-06-14T06:15:18.117", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3310066%40filester%2Ftrunk&old=3294389%40filester%2Ftrunk&sfp_email=&sfph_mail="}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/00df02cd-b4d3-477a-86ee-aa2f9b5216e8?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-434"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-22T17:18:25.695833+00:00", "value": {"mitigation_remediation": ["Upgrade File Manager Pro \u2013 Filester to the latest version that includes proper file type validation (skip vulnerable 1.8.8 and below).", "Revoke file manager upload privileges from non-administrator accounts, especially subscribers, to limit the potential impact.", "Disable the plugin\u2019s file upload feature or implement server\u2011side file type checks as a temporary workaround until the official patch is applied."], "summary": {"action": "Update Plugin", "impact": "Arbitrary File Upload leading to potential Remote Code Execution"}, "threat_synthesis": {"affected_systems": "Vulnerable versions are all releases up to and including 1.8.8 of ninjateam:File Manager Pro \u2013 Filester. Administrators are required to exploit the flaw, and the plugin\u2019s permission model can extend upload privileges to lower-level users such as subscribers, expanding the attack surface.", "description_and_impact": "The File Manager Pro \u2013 Filester plugin in WordPress allows authenticated users with Administrator-level access to upload files without proper file type validation, raising the risk of arbitrary file uploads. Because uploaded files can be executed on the server, the flaw can lead to remote code execution. The weakness is identified as CWE-434.", "risk_and_exploitability": "The CVSS score is 7.2, indicating a high severity. The EPSS score of 1% shows that, while exploitation is possible, it is not among the most frequently observed vulnerabilities. The vulnerability is not currently listed in the CISA KEV catalog, suggesting no confirmed public exploits yet. Exploitation requires authenticated Administrator access and the ability to upload a crafted file, which could be achieved by an attacker who already compromises an account with sufficient privileges or through social engineering to gain such access."}}}}, "created": "2026-04-22T17:30:22.632248+00:00", "updated": "2026-04-22T17:30:22.632266+00:00", "vendors": []}