Wp Extra File Types Project

wp_extra_file_types_project

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Wp Extra File Types

wp_extra_file_types

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-24936 1Wp Extra File Types Project 1Wp Extra File Types Jun 17, 2026 Jan 24, 2022 N/A· v4 8.0 HIGH· v3 6.0 MEDIUM· v2 The WP Extra File Types WordPress plugin before 0.5.1 does not have CSRF check when saving its settings, nor sanitise and escape some of them, which could allow attackers to make a logged in admin change them and perform...Show more The WP Extra File Types WordPress plugin before 0.5.1 does not have CSRF check when saving its settings, nor sanitise and escape some of them, which could allow attackers to make a logged in admin change them and perform Cross-Site Scripting attacksShow less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2021-24936

1Wp Extra File Types Project

1Wp Extra File Types

Jun 17, 2026

Jan 24, 2022

N/A· v4

8.0 HIGH· v3

6.0 MEDIUM· v2

The WP Extra File Types WordPress plugin before 0.5.1 does not have CSRF check when saving its settings, nor sanitise and escape some of them, which could allow attackers to make a logged in admin change them and perform...Show more