Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackKrzysztof ZającPATCHSTACK:8131E82962711259F86E23983D24D431
HistoryJan 12, 2022 - 12:00 a.m.

WordPress Download Manager plugin <= 3.2.33 - Authenticated SQL injection (SQLi) vulnerability to Reflected XSS vulnerability

2022-01-1200:00:00
Krzysztof Zając
patchstack.com
8

0.001 Low

EPSS

Percentile

36.9%

JSON

Authenticated SQL injection (SQLi) vulnerability to Reflected XSS vulnerability discovered by Krzysztof Zając in WordPress Download Manager plugin (versions <= 3.2.33).

Solution

           Update the WordPress Download Manager plugin to the latest available version (at least 3.2.34).
CPENameOperatorVersion
download managerle3.2.33

Related

cvelist 1
wpexploit 1
prion 1
cve 1
nvd 1
wpvulndb 1
openvas 1
nessus 1
cvelist
cvelist
CVE-2021-25069 WordPress Download Manager < 3.2.34 - Authenticated SQL Injection to Reflected XSS
2022-02-21 10:45:48
wpexploit
wpexploit
WordPress Download Manager < 3.2.34 - Authenticated SQL Injection to Reflected XSS
2022-01-20 00:00:00
prion
prion
Cross site scripting
2022-02-21 11:15:00
cve
cve
CVE-2021-25069
2022-02-21 11:15:08
nvd
nvd
CVE-2021-25069
2022-02-21 11:15:08
wpvulndb
wpvulndb
WordPress Download Manager < 3.2.34 - Authenticated SQL Injection to Reflected XSS
2022-01-20 00:00:00
openvas
openvas
WordPress Download Manager Plugin < 3.2.34 SQLi Vulnerability
2022-03-01 00:00:00
nessus
nessus
Download Manager Plugin for WordPress < 3.2.34 Multiple Vulnerabilities
2023-09-13 00:00:00

0.001 Low

EPSS

Percentile

36.9%

JSON
Related for PATCHSTACK:8131E82962711259F86E23983D24D431
cvelist1wpexploit1prion1cve1nvd1wpvulndb1openvas1nessus1