Lucene search
HistoryMar 25, 2024 - 5:15 a.m.
CVE-2024-1232
wordpress
csrf
vulnerability
admin
nvd
The CM Download Manager WordPress plugin before 2.9.0 does not have CSRF checks in some places, which could allow attackers to make logged in admins delete downloads via a CSRF attack
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cminds | cm_download_manager | * | cpe:2.3:a:cminds:cm_download_manager:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2024-1232 CM Download Manager < 2.9.0 - Download Deletion via CSRF
2024-03-25 05:00:01
wpexploit
wpexploit
CM Download Manager < 2.9.0 - Download Deletion via CSRF
2024-03-04 00:00:00
wpvulndb
wpvulndb
CM Download Manager < 2.9.0 - Download Deletion via CSRF
2024-03-04 00:00:00
wordfence
wordfence