Browse all 14 CVE security advisories affecting N-MEDIA. AI-powered Chinese analysis, POCs, and references for each vulnerability.
N-MEDIA develops digital media management solutions primarily serving content-heavy industries. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. The company has addressed multiple critical security flaws in its content management and streaming platforms, with 14 CVEs documented to date. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities in web interfaces and API endpoints suggests ongoing challenges in secure coding practices, particularly regarding user-supplied data handling and authentication mechanisms.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-25005 | WordPress Frontend File Manager plugin <= 23.5 - Insecure Direct Object References (IDOR) vulnerability — Frontend File ManagerCWE-639 | 5.3 | Medium | 2026-02-19 |
| CVE-2025-64265 | WordPress Frontend File Manager plugin <= 23.2 - Broken Access Control vulnerability — Frontend File ManagerCWE-862 | 4.3 | Medium | 2025-11-13 |
| CVE-2025-57921 | WordPress Frontend File Manager plugin <= 23.3 - Broken Access Control vulnerability — Frontend File ManagerCWE-862 | 5.3 | Medium | 2025-09-22 |
| CVE-2025-27358 | WordPress Frontend File Manager plugin <= 23.6 - Content Injection vulnerability — Frontend File ManagerCWE-80 | 4.6 | Medium | 2025-07-04 |
| CVE-2024-25903 | WordPress Frontend File Manager Plugin plugin <= 22.7 - Sensitive Data Exposure vulnerability — Frontend File ManagerCWE-200 | 5.3 | Medium | 2024-03-17 |
This page lists every published CVE security advisory associated with N-MEDIA. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.