CVE-2020-25213

nvd nist nuclei

Published: Sep 9, 2020Modified: Nov 7, 2025CISA KEV

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

The File Manager (wp-file-manager) plugin before 6.9 for WordPress allows remote attackers to upload and execute arbitrary PHP code because it renames an unsafe example elFinder connector file to have the .php extension. This, for example, allows attackers to run the elFinder upload (or mkfile and put) command to write PHP code into the wp-content/plugins/wp-file-manager/lib/files/ directory. This was exploited in the wild in August and September 2020.

Affected (1)

Products: Filemanagerpro: File Manager

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Filemanagerpro File Manager	Before 6.9

Related CWEs

Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

References (19)

http://packetstormsecurity.com/files/160003/WordPress-File-Manager-6.8-Remote-Code-Execution.html

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/171650/WordPress-File-Manager-6.9-Shell-Upload.html

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

https://github.com/w4fz5uck5/wp-file-manager-0day

Source: cve@mitre.org

ExploitThird Party Advisory

https://hotforsecurity.bitdefender.com/blog/wordpress-websites-attacked-via-file-manager-plugin-vulnerability-24048.html

Source: cve@mitre.org

Broken LinkThird Party Advisory

https://plugins.trac.wordpress.org/changeset/2373068

Source: cve@mitre.org

Patch

https://seravo.com/blog/0-day-vulnerability-in-wp-file-manager/

Source: cve@mitre.org

ExploitThird Party Advisory

https://wordfence.com/blog/2020/09/700000-wordpress-users-affected-by-zero-day-vulnerability-in-file-manager-plugin/

Source: cve@mitre.org

ExploitThird Party Advisory

https://wordpress.org/plugins/wp-file-manager/#developers

Source: cve@mitre.org

ProductRelease Notes

https://zdnet.com/article/millions-of-wordpress-sites-are-being-probed-attacked-with-recent-plugin-bug/

Source: cve@mitre.org

Press/Media Coverage

http://packetstormsecurity.com/files/160003/WordPress-File-Manager-6.8-Remote-Code-Execution.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/171650/WordPress-File-Manager-6.9-Shell-Upload.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

https://github.com/w4fz5uck5/wp-file-manager-0day

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://hotforsecurity.bitdefender.com/blog/wordpress-websites-attacked-via-file-manager-plugin-vulnerability-24048.html

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkThird Party Advisory

https://plugins.trac.wordpress.org/changeset/2373068

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://seravo.com/blog/0-day-vulnerability-in-wp-file-manager/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://wordfence.com/blog/2020/09/700000-wordpress-users-affected-by-zero-day-vulnerability-in-file-manager-plugin/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://wordpress.org/plugins/wp-file-manager/#developers

Source: af854a3a-2127-422b-91ae-364da2661108

ProductRelease Notes

https://zdnet.com/article/millions-of-wordpress-sites-are-being-probed-attacked-with-recent-plugin-bug/

Source: af854a3a-2127-422b-91ae-364da2661108

Press/Media Coverage

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-25213

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

US Government Resource

Timeline

No history available yet.