Known Vulnerabilities for Simple File List by Simplefilelist
Listed below are 2 of the newest known vulnerabilities associated with "Simple File List" by "Simplefilelist".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-68591 json | Missing Authorization vulnerability in Mitchell Bennis Simple File List simple-file-list allows Exploiting Incorrectly Config... | Not Provided | 2025-12-24 | 2026-04-23 |
| CVE-2025-54021 json | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Mitchell Bennis Simple File L... | Not Provided | 2025-08-20 | 2026-04-23 |
| CVE-2025-47450 json | Missing Authorization vulnerability in Mitchell Bennis Simple File List simple-file-list allows Exploiting Incorrectly Config... | Not Provided | 2025-05-07 | 2026-04-23 |
| CVE-2023-39924 json | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Mitchell Bennis Simple File List plugin <= 6.1.9 versions. | 4.8 - MEDIUM | 2023-10-25 | 2023-10-31 |
| CVE-2023-1025 json | The Simple File List WordPress plugin before 6.0.10 does not sanitise and escape some of its settings, which could allow high... | 4.8 - MEDIUM | 2023-03-27 | 2023-11-07 |
| CVE-2022-1119 json | The Simple File List WordPress plugin is vulnerable to Arbitrary File Download via the eeFile parameter found in the ~/incl... | 4.8 - MEDIUM | 2022-04-19 | 2026-04-08 |