Folders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager < 3.1.6 – Missing Authorization to Authenticated (Author+) Media Replacement | CVE 2025-12640 | Plugin Vulnerabilities

Description

The Folders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager plugin for WordPress is vulnerable to Unauthorized Arbitrary Media Replacement in all versions up to, and including, 3.1.5. This is due to missing object-level authorization checks in the handle_folders_file_upload() function. This makes it possible for authenticated attackers, with Author-level access and above, to replace arbitrary media files from the WordPress Media Library.

Affects Plugins

Fixed in 3.1.6

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/ac6432a4-6597-4d1e-b63d-c007a301d1b2

Classification

Type

NO AUTHORISATION

OWASP top 10

A5: Broken Access Control

CWE

CVSS

Miscellaneous

Original Researcher

Md. Moniruzzaman Prodhan (NomanProdhan)

Verified

No

WPVDB ID

e50ff491-2407-4d4c-bef8-f8ad922625eb

Timeline

Publicly Published

2026-01-07 (about 4 months ago)

Added

2026-01-07 (about 4 months ago)

Last Updated

2026-01-08 (about 4 months ago)

Other

Published

Title

Published

2026-02-18

Title

Razorpay for WooCommerce < 4.7.9 - Unauthenticated Order Modification

Published

2024-02-20

Title

WooCommerce Google Sheet Connector < 1.3.12 - Missing Authorization

Published

2025-04-09

Title

Sandwich Adsense <= 4.0.2 - Missing Authorization

Published

2022-01-17

Title

PPOM for WooCommerce < 24.0 - Subscriber+ Settings Update to Stored XSS

Published

2025-04-22

Title

wProject < 5.8.0 - Missing Authorization to Unauthenticated Content Modification and Deletion