CVE-2021-47940 - WordPress Download From Files 1.48 Arbitrary File Upload
CVE ID :CVE-2021-47940 Published : May 10, 2026, 12:43 p.m. | 21 minutes ago Description :WordPress Plugin Download From Files version 1.48 and earlier contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious files by exploiting the AJAX fileupl
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Summer Travel Is a Mess. The Points Guy Tells Us How to Hack It
- [CYBER] Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak
- [CYBER] CVE-2021-47953 - OpenCart 3.0.3.7 Cross-Site Request Forgery via account/password
- [CYBER] CVE-2021-47951 - WordPress Picture Gallery 1.4.2 Stored XSS via Edit Content URL
- [CYBER] CVE-2021-47950 - Advanced Guestbook 2.4.4 Persistent XSS via Smilies
- [CYBER] CVE-2021-47949 - CyberPanel 2.1 Authenticated Remote Code Execution via Symlink Attack