Back to KEVs

CVE-2020-35235

vendor/elfinder/php/connector.minimal.php in the secure-file-manager plugin through 2.5 for WordPress loads elFinder code without proper access...

Basic Information

CVE State
PUBLISHED
Reserved Date
December 14, 2020
Published Date
December 14, 2020
Last Updated
August 04, 2024
Vendor
WordPress
Product
secure-file-manager plugin
Description
vendor/elfinder/php/connector.minimal.php in the secure-file-manager plugin through 2.5 for WordPress loads elFinder code without proper access control. Thus, any authenticated user can run the elFinder upload command to achieve remote code execution. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
Tags
wordpress php

CVSS Scores

CVSS v3.1

8.8 - HIGH

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2.0

6.5

Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P

EPSS Score

Score
9.20% (Percentile: 92.34%) as of 2025-07-29

SSVC Information

Exploitation
poc
Technical Impact
total

Exploit Status

Exploited in the Wild
Yes (2025-07-06 00:00:00 UTC) Source

References

https://blog.nintechnet.com/authenticated-rce-vulnerability-in-wordpress-secure-file-manager-plugin-unpatched/ https://wordpress.org/plugins/secure-file-manager/#developers

Known Exploited Vulnerability Information

Source Added Date
The Shadowserver (via CIRCL) 2025-07-07 12:01:04 UTC

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Added to KEVIntel