WordPress Plugin Vulnerabilities

File Away <= 3.9.9.0.1 - Missing Authorization to Unauthenticated Arbitrary File Read

Description

The File Away plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the ajax() function in all versions up to, and including, 3.9.9.0.1. This makes it possible for unauthenticated attackers, leveraging the use of a reversible weak algorithm, to read the contents of arbitrary files on the server, which can contain sensitive information.

Affects Plugins

Plugin icon
file-away
No known fix

References

CVE
CVE-2025-2539
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/5b23bd5c-db27-4d63-8461-1f36958a2ff6

Classification

Type
INCORRECT AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-863
CVSS
7.5 (high)

Miscellaneous

Original Researcher
Sélim Lanouar (whattheslime)
Verified
No
WPVDB ID
54f972e4-0801-435b-92df-445f000ebf66

Timeline

Publicly Published
2025-03-19 (about 1 year ago)
Added
2025-03-24 (about 1 year ago)
Last Updated
2025-03-24 (about 1 year ago)

Other

Published
Title
Published
2026-06-01
Title
Slider Revolution 7.0.0 - 7.0.14 - Incorrect Authorization to Authenticated (Contributor+) Sensitive Information Exposure
Published
2025-07-10
Title
Premium Age Verification / Restriction for WordPress <= 3.0.2 - Unauthenticated Arbitrary File Read/Write
Published
2021-11-15
Title
Temporary Login Without Password < 1.7.1 - Subscriber+ Plugin's Settings Update
Published
2020-07-30
Title
JetBackup < 1.4.1 - Subscriber+ Arbitrary Backup Location Update
Published
2025-04-24
Title
Prevent Direct Access 2.8.6 - 2.8.8.2 - Incorrect Authorization to Authenticated (Contributor+) Multiple Media Actions