Primary

Context

ERI File Library Missing Authorization Vulnerability Allowing Unauthenticated Protected File Download

Vulnerability

A vulnerability exists in the ERI File Library plugin for WordPress, in all versions through 1.1.0. The issue arises from a missing capability check on the 'erifl_file' AJAX action, which allows unauthenticated attackers to download files that are restricted to certain user roles.

Impact

Exploitation of this vulnerability could lead to unauthorized access to protected files, allowing unauthenticated users to download them.

Reproduction

To reproduce this vulnerability, send an AJAX request to the 'erifl_file' action without authentication. Include the file ID of the protected file in the request. The absence of a capability check will allow the download to proceed, bypassing the intended user role restrictions.

Remediation

Users are advised to update the ERI File Library plugin to version 1.1.1 or later.

Added: Oct 31, 2025, 10:19 AM

Updated: Oct 31, 2025, 10:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.4

remediation

7.7

relevance

0.9

threat

4.8

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.4

remediation

7.7

relevance

0.9

threat

4.8

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ERI File Library Missing Authorization Vulnerability Allowing Unauthenticated Protected File Download

Vulnerability

Impact

Reproduction

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating