3 matches found
CVE-2020-5651
SQL injection vulnerability in Simple Download Monitor 3.8.8 and earlier allows remote attackers to execute arbitrary SQL commands via a specially crafted URL...
CVE-2020-5651
CVE-2020-5651 affects the WordPress plugin Simple Download Monitor (versions 3.8.8 and earlier). The root cause is SQL injection via a specially crafted URL that bypasses input validation, allowing remote attackers to execute arbitrary SQL commands. Documented impact includes the ability to run a...
JVN#31425618: Multiple vulnerabilities in WordPress Plugin "Simple Download Monitor"
WordPress Plugin "Simple Download Monitor" provided by Tips and Tricks HQ contains multiple vulnerabilities listed below. Cross-site Scripting CWE-79 - CVE-2020-5650 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base Score: 6.1 CVSS v2|...