A vulnerability classified as problematic has been found in nickboss File Upload Plugin up to 4.24.15 on WordPress. This affects the function wfu_ajax_action_read_subfolders. The manipulation leads to missing authorization.

This vulnerability is uniquely identified as CVE-2024-12719. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.