CVE-2026-8378 | Frontend File Manager Plugin up to 23.6 on WordPress file-rename Endpoint cross site scripting

Inserito da Angelo Barbosa | Giu 23, 2026 | CVE

A vulnerability was found in Frontend File Manager Plugin up to 23.6 on WordPress. It has been rated as problematic. This affects an unknown part of the component file-rename Endpoint. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2026-8378. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2026-8378 | Frontend File Manager Plugin up to 23.6 on WordPress file-rename Endpoint cross site scripting

Post correlati

CVE-2025-21040 | Samsung S Assistant up to 9.3.1 intent by broadcast receiver

CVE-2024-20719 | Adobe Commerce cross site scripting (apsb24-03)

CVE-2025-13727 | Video Share VOD Plugin up to 2.7.11 on WordPress Setting cross site scripting

CVE-2025-7911 | D-Link DI-8100 1.0 jhttpd /upnp_ctrl.asp sprintf remove_ext_proto/remove_ext_port stack-based overflow