Context Navigation

← Previous Changeset
Next Changeset →

Changeset 3436302

Timestamp:

01/09/2026 09:11:29 PM (3 months ago)

Author:

eemitch

Message:

Security Fix: Fixed broken access control vulnerability (CVE-2025-68591) in file management operations.

Added back-end capability checks to help prevent malicious back-end users from circumventing the Back-End Access setting.

Location:

simple-file-list

Files:

: 132 added
: 4 deleted
: 2 edited

tags/6.1.17 (added)
tags/6.1.17/Simple-File-List.pdf (added)
tags/6.1.17/css (added)
tags/6.1.17/css/admin5.css (added)
tags/6.1.17/css/index.html (added)
tags/6.1.17/css/styles-flex.css (added)
tags/6.1.17/css/styles-table.css (added)
tags/6.1.17/css/styles-theme-dark.css (added)
tags/6.1.17/css/styles-theme-light.css (added)
tags/6.1.17/css/styles-tiles.css (added)
tags/6.1.17/css/styles-upload-form.css (added)
tags/6.1.17/css/styles-upload-theme-light.css (added)
tags/6.1.17/css/styles.css (added)
tags/6.1.17/ee-admin-page.php (added)
tags/6.1.17/ee-list-display.php (added)
tags/6.1.17/ee-simple-file-list.php (added)
tags/6.1.17/images (added)
tags/6.1.17/images/Mitchell-Bennis-Head-Shot.jpg (added)
tags/6.1.17/images/SFL-Pro-Admin-List.jpg (added)
tags/6.1.17/images/icon-128x128.png (added)
tags/6.1.17/images/icon-256x256.png (added)
tags/6.1.17/images/index.html (added)
tags/6.1.17/images/sending.gif (added)
tags/6.1.17/images/thumbnails (added)
tags/6.1.17/images/thumbnails/3gp.svg (added)
tags/6.1.17/images/thumbnails/ai.svg (added)
tags/6.1.17/images/thumbnails/aif.svg (added)
tags/6.1.17/images/thumbnails/aiff.svg (added)
tags/6.1.17/images/thumbnails/apk.svg (added)
tags/6.1.17/images/thumbnails/avi.svg (added)
tags/6.1.17/images/thumbnails/bmp.svg (added)
tags/6.1.17/images/thumbnails/cr2.svg (added)
tags/6.1.17/images/thumbnails/default.svg (added)
tags/6.1.17/images/thumbnails/default_image.jpg (added)
tags/6.1.17/images/thumbnails/default_pdf.jpg (added)
tags/6.1.17/images/thumbnails/default_video.jpg (added)
tags/6.1.17/images/thumbnails/dmg.svg (added)
tags/6.1.17/images/thumbnails/doc.svg (added)
tags/6.1.17/images/thumbnails/docx.svg (added)
tags/6.1.17/images/thumbnails/eps.svg (added)
tags/6.1.17/images/thumbnails/flv.svg (added)
tags/6.1.17/images/thumbnails/folder.svg (added)
tags/6.1.17/images/thumbnails/gz.svg (added)
tags/6.1.17/images/thumbnails/indd.svg (added)
tags/6.1.17/images/thumbnails/iso.svg (added)
tags/6.1.17/images/thumbnails/jpeg.svg (added)
tags/6.1.17/images/thumbnails/jpg.svg (added)
tags/6.1.17/images/thumbnails/m4v.svg (added)
tags/6.1.17/images/thumbnails/midi.svg (added)
tags/6.1.17/images/thumbnails/mov.svg (added)
tags/6.1.17/images/thumbnails/mp3.svg (added)
tags/6.1.17/images/thumbnails/mp4.svg (added)
tags/6.1.17/images/thumbnails/mpeg.svg (added)
tags/6.1.17/images/thumbnails/mpg.svg (added)
tags/6.1.17/images/thumbnails/pdf.svg (added)
tags/6.1.17/images/thumbnails/png.svg (added)
tags/6.1.17/images/thumbnails/pps.svg (added)
tags/6.1.17/images/thumbnails/ppsx.svg (added)
tags/6.1.17/images/thumbnails/ppt.svg (added)
tags/6.1.17/images/thumbnails/pptx.svg (added)
tags/6.1.17/images/thumbnails/psd.svg (added)
tags/6.1.17/images/thumbnails/tar.svg (added)
tags/6.1.17/images/thumbnails/tgz.svg (added)
tags/6.1.17/images/thumbnails/tif.svg (added)
tags/6.1.17/images/thumbnails/tiff.svg (added)
tags/6.1.17/images/thumbnails/txt.svg (added)
tags/6.1.17/images/thumbnails/wav.svg (added)
tags/6.1.17/images/thumbnails/wma.svg (added)
tags/6.1.17/images/thumbnails/wmv.svg (added)
tags/6.1.17/images/thumbnails/xls.svg (added)
tags/6.1.17/images/thumbnails/xlsx.svg (added)
tags/6.1.17/images/thumbnails/zip.svg (added)
tags/6.1.17/includes (added)
tags/6.1.17/includes/ee-admin-footer.php (added)
tags/6.1.17/includes/ee-admin-header.php (added)
tags/6.1.17/includes/ee-class.php (added)
tags/6.1.17/includes/ee-email-settings.php (added)
tags/6.1.17/includes/ee-extension-settings.php (added)
tags/6.1.17/includes/ee-functions.php (added)
tags/6.1.17/includes/ee-get-pro.php (added)
tags/6.1.17/includes/ee-index-template.html (added)
tags/6.1.17/includes/ee-list-display-flex.php (added)
tags/6.1.17/includes/ee-list-display-table.php (added)
tags/6.1.17/includes/ee-list-display-tiles.php (added)
tags/6.1.17/includes/ee-list-settings.php (added)
tags/6.1.17/includes/ee-plugin-author.php (added)
tags/6.1.17/includes/ee-plugin-extension-SFL-PRO.php (added)
tags/6.1.17/includes/ee-plugin-extension-SFLM.php (added)
tags/6.1.17/includes/ee-upload-settings.php (added)
tags/6.1.17/includes/index.html (added)
tags/6.1.17/includes/sending.gif (added)
tags/6.1.17/index.html (added)
tags/6.1.17/js (added)
tags/6.1.17/js/ee-back.js (added)
tags/6.1.17/js/ee-edit-file.js (added)
tags/6.1.17/js/ee-footer.js (added)
tags/6.1.17/js/ee-head.js (added)
tags/6.1.17/js/index.html (added)
tags/6.1.17/languages (added)
tags/6.1.17/languages/ee-simple-file-list-cs_CZ.mo (added)
tags/6.1.17/languages/ee-simple-file-list-cs_CZ.po (added)
tags/6.1.17/languages/ee-simple-file-list-da_DK.mo (added)
tags/6.1.17/languages/ee-simple-file-list-da_DK.po (added)
tags/6.1.17/languages/ee-simple-file-list-de_DE.mo (added)
tags/6.1.17/languages/ee-simple-file-list-de_DE.po (added)
tags/6.1.17/languages/ee-simple-file-list-es_ES.mo (added)
tags/6.1.17/languages/ee-simple-file-list-es_ES.po (added)
tags/6.1.17/languages/ee-simple-file-list-es_MX.mo (added)
tags/6.1.17/languages/ee-simple-file-list-es_MX.po (added)
tags/6.1.17/languages/ee-simple-file-list-fr_BE.mo (added)
tags/6.1.17/languages/ee-simple-file-list-fr_BE.po (added)
tags/6.1.17/languages/ee-simple-file-list-fr_CA.mo (added)
tags/6.1.17/languages/ee-simple-file-list-fr_CA.po (added)
tags/6.1.17/languages/ee-simple-file-list-fr_FR.mo (added)
tags/6.1.17/languages/ee-simple-file-list-fr_FR.po (added)
tags/6.1.17/languages/ee-simple-file-list-it_IT.mo (added)
tags/6.1.17/languages/ee-simple-file-list-it_IT.po (added)
tags/6.1.17/languages/ee-simple-file-list-nl_NL.mo (added)
tags/6.1.17/languages/ee-simple-file-list-nl_NL.po (added)
tags/6.1.17/languages/ee-simple-file-list-pt_BR.mo (added)
tags/6.1.17/languages/ee-simple-file-list-pt_BR.po (added)
tags/6.1.17/languages/ee-simple-file-list-pt_PT.mo (added)
tags/6.1.17/languages/ee-simple-file-list-pt_PT.po (added)
tags/6.1.17/languages/ee-simple-file-list-sv_SE.mo (added)
tags/6.1.17/languages/ee-simple-file-list-sv_SE.po (added)
tags/6.1.17/languages/ee-simple-file-list.pot (added)
tags/6.1.17/languages/index.html (added)
tags/6.1.17/readme.txt (added)
tags/6.1.17/security.txt (added)
tags/6.1.17/uploader (added)
tags/6.1.17/uploader/ee-class-uploads.php (added)
tags/6.1.17/uploader/ee-uploader.js (added)
trunk/ee-simple-file-list.php (modified) (3 diffs)
trunk/images/thumbnails/!default.svg (deleted)
trunk/images/thumbnails/!default_image.jpg (deleted)
trunk/images/thumbnails/!default_pdf.jpg (deleted)
trunk/images/thumbnails/!default_video.jpg (deleted)
trunk/readme.txt (modified) (2 diffs)

Legend:

: Unmodified
: Added
: Removed

simple-file-list/trunk/ee-simple-file-list.php

-                      r3427454
+                      r3436302
 Description: A Basic File List Manager with File Uploader
 Author: Mitchell Bennis
 Version: 6.1.16
+Version: 6.1.17
 Author URI: http://simplefilelist.com
 License: GPLv2 or later
 …
 // CONSTANTS
 define('eeSFL_BASE_DevMode', FALSE);
 define('eeSFL_BASE_Version', '6.1.16'); // Plugin version
+define('eeSFL_BASE_Version', '6.1.17'); // Plugin version
 define('eeSFL_BASE_PluginName', 'Simple File List');
 define('eeSFL_BASE_PluginSlug', 'simple-file-list');
 …
     $eeReferer = wp_get_referer();
     if( strpos($eeReferer, '/wp-admin/') OR $eeSFL_BASE->eeListSettings['AllowFrontManage'] == 'YES') {
+        // Verify user has proper capabilities for file management
+        // Back-end requests must respect the AdminRole setting
+        if( strpos($eeReferer, '/wp-admin/') ) {
+            // Map AdminRole to capability (same as admin menu access control)
+            $eeRequiredCapability = 'activate_plugins'; // Default to admin
+            if(isset($eeSFL_BASE->eeListSettings['AdminRole'])) {
+                switch ($eeSFL_BASE->eeListSettings['AdminRole']) {
+                    case 1:
+                        $eeRequiredCapability = 'read'; // Subscriber
+                        break;
+                    case 2:
+                        $eeRequiredCapability = 'edit_posts'; // Contributor
+                        break;
+                    case 3:
+                        $eeRequiredCapability = 'publish_posts'; // Author
+                        break;
+                    case 4:
+                        $eeRequiredCapability = 'edit_others_pages'; // Editor
+                        break;
+                    case 5:
+                        $eeRequiredCapability = 'activate_plugins'; // Admin
+                        break;
+                }
+            }
+            if( !current_user_can($eeRequiredCapability) ) {
+                return 'ERROR 97'; // Insufficient permissions
+            }
+        }
+        // Front-end management: AllowFrontManage == 'YES' allows editing without additional capability check
+        // (The setting itself controls access)
         // The Action

simple-file-list/trunk/readme.txt

-                      r3427454
+                      r3436302
 Requires PHP: 7.4
 Tested up to: 6.9
 Stable tag: 6.1.16
+Stable tag: 6.1.17
 License: GPLv2 or later
 License URI: http://www.gnu.org/licenses/gpl-2.0.html
 …
 == Changelog ==
+= 6.1.17 =
+* Security Fix: Fixed broken access control vulnerability (CVE-2025-68591) in file management operations.
+** Added back-end capability checks to help prevent malicious back-end users from circumventing the Back-End Access setting.
 = 6.1.16 =

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Plugin Directory

Context Navigation

Changeset 3436302

Legend:

simple-file-list/trunk/ee-simple-file-list.php

simple-file-list/trunk/readme.txt

Download in other formats: