Lucene search
Muhammad Daffa (Patchstack Alliance)PATCHSTACK:AD2E8EF1CC805538B58E810EFA2FC0FAHistoryAug 02, 2022 - 12:00 a.m.
WordPress Download Manager plugin <= 3.2.48 - Cross-Site Request Forgery (CSRF) vulnerability
2022-08-0200:00:00
Muhammad Daffa (Patchstack Alliance)
patchstack.com
16
wordpress
download manager
csrf
vulnerability
patchstack alliance
update
0.001 Low
EPSS
Percentile
41.8%
Cross-Site Request Forgery (CSRF) vulnerability leading to template status change discovered by Muhammad Daffa (Patchstack Alliance) in WordPress Download Manager plugin (versions <= 3.2.48).
Solution
Update the WordPress Download Manager plugin to the latest available version (at least 3.2.49).
| CPE | Name | Operator | Version |
|---|---|---|---|
| download manager | le | 3.2.48 |
Related
cve
cve
CVE-2022-34347
2022-08-22 15:15:16
nvd
nvd
CVE-2022-34347
2022-08-22 15:15:16
prion
prion
Cross site request forgery (csrf)
2022-08-22 15:15:00
wpvulndb
wpvulndb
Download Manager < 3.2.49 - Clear Stats & Cache via CSRF
2022-08-02 00:00:00
cvelist
cvelist