nmedia
Web & CMS Pluginscommercial
Top products
Latest CVEs
The 15 most recently published vulnerabilities affecting nmedia.
- CVE-2026-1280Frontend File Manager Plugin <= 23.5 - Missing Authorization to Unauthenticated Arbitrary File Sharing via 'file_id' Parameter7.5
- CVE-2026-0844Simple User Registration <= 6.7 - Authenticated (Subscriber+) Privilege Escalation via profile_save_field8.8
- CVE-2025-13382Frontend File Manager Plugin <= 23.4 - Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary File Renaming4.3
- CVE-2025-13389Admin and Customer Messages After Order for WooCommerce: OrderConvo <= 14 - Missing Authorization to Unauthenticated Information Disclosure5.3
- CVE-2025-13452Admin and Customer Messages After Order for WooCommerce: OrderConvo <= 14 - Missing Authorization to Unauthenticated User Impersonation in Order Messages4.3
- CVE-2025-12160Simple User Registration <= 6.6 - Unauthenticated Stored Cross-Site Scripting7.2
- CVE-2023-7306Frontend File Manager <= 21.5 - Missing Authorization to Unauthenticated Arbitrary Post Deletion7.5
- CVE-2025-4334Simple User Registration <= 6.3 - Unauthenticated Privilege Escalation9.8
- CVE-2024-13456Easy Quiz Maker <= 2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting6.4
- CVE-2024-12826GoHero Store Customizer for WooCommerce <= 3.5 - Missing Authorization to Unuthenticated Settings Update4.3
- CVE-2024-13355Admin and Customer Messages After Order for WooCommerce <= 13.2 - Authenticated (Subscriber+) Limited File Upload to Cross-Site Scripting5.4
- CVE-2016-15042Frontend File Manager < 4.0 & N-Media Post Front-end Form < 1.1 & - Arbitrary File Upload9.8
- CVE-2024-06292Checkout Payment Gateway for WooCommerce <= 6.2 - Missing Authorization via sniff_ins5.3
- CVE-2024-0829Comments Extra Fields For Post,Pages and CPT <= 5.0 - Missing Authorization4.3
- CVE-2024-0830Comments Extra Fields For Post,Pages and CPT <= 5.0 - Cross-Site Request Forgery4.3