0.002 Low
EPSS
Percentile
56.7%
The avenirsoft-directdownload plugin 1.0 for WordPress has CSRF with resultant XSS via wp-admin/admin.php?page=avenir_plugin.
packetstormsecurity.com/files/132992/
wordpress.org/plugins/avenirsoft-directdownload/#developers