CVE-2026-12277 - Frontend File Manager Plugin <= 23.6 - Unauthenticated Arbitrary File Deletion via Saved File Metadata Path Traversal
CVE ID :CVE-2026-12277 Published : July 7, 2026, 6:16 a.m. | 10 hours, 58 minutes ago Description :The Frontend File Manager Plugin WordPress plugin through 23.6 does not validate a file path derived from user input before deleting the referenced file, allowing unauthenticated users to delete...