EPSS
Percentile
44.0%
Authenticated Arbitrary File Download vulnerability discovered by Ex.Mi (Patchstack) in WordPress Download Monitor plugin (versions <= 4.4.6).
Update the WordPress Download Monitor plugin to the latest available version (at least 4.4.7).
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31567
github.com/WPChill/download-monitor/blob/master/changelog.txt