Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-46503

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.00416EPSS
Exploits0References18
RedhatCVE
RedhatCVE
added 2025/05/23 8:30 a.m.6 views

CVE-2024-5266

The Download Manager Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via wpdmuserdashboard, wpdmpackage, wpdmpackages, wpdmsearchresult, and wpdmtag shortcodes in all versions up to, and including, 3.2.92 due to insufficient input sanitization and output escaping on user...

6.4CVSS5AI score0.00416EPSS
Exploits0References1
OSV
OSV
added 2024/06/12 9:15 a.m.6 views

CVE-2024-5266

The Download Manager Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via wpdmuserdashboard, wpdmpackage, wpdmpackages, wpdmsearchresult, and wpdmtag shortcodes in all versions up to, and including, 3.2.92 due to insufficient input sanitization and output escaping on user...

5.4CVSS6AI score0.00416EPSS
Exploits0References18
CNNVD
CNNVD
added 2024/06/12 12:0 a.m.3 views

WordPress plugin Download Manager Pro security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability previously existed...

6.4CVSS6AI score0.00416EPSS
Exploits0References19
Positive Technologies
Positive Technologies
added 2024/06/12 12:0 a.m.7 views

PT-2024-35406 · WordPress · Download Manager Pro

Name of the Vulnerable Software and Affected Versions: Download Manager Pro plugin for WordPress versions up to, and including, 3.2.92 Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in certain shortcodes, including wpdm user...

6.4CVSS7.2AI score0.00416EPSS
Exploits0References19
NVD
NVD
added 2024/03/13 4:15 p.m.16 views

CVE-2023-6954

The Download Manager Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 3.2.85 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS5.7AI score0.00543EPSS
Exploits0References5
CVE
CVE
added 2024/03/13 3:26 p.m.53 views

CVE-2023-6954

CVE-2023-6954 affects the WordPress Download Manager Pro plugin up to version 3.2.85. The vulnerability is a Stored Cross-Site Scripting (XSS) flaw caused by insufficient input sanitization and output escaping in the plugin’s shortcode attributes, enabling authenticated attackers with contributor...

6.4CVSS6AI score0.00543EPSS
Exploits0References5Affected Software1
CNNVD
CNNVD
added 2024/03/13 12:0 a.m.4 views

WordPress Plugin Download Manager Pro security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blog sites on servers running PHP and MySQL.WordPress plugin i...

6.4CVSS5.9AI score0.00543EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2023/05/02 7:4 a.m.10 views

CVE-2023-1809 Download Manager Pro < 6.3.0 - Unauthenticated Sensitive Information Disclosure

The Download Manager WordPress plugin before 6.3.0 leaks master key information without the need for a password, allowing attackers to download arbitrary password-protected package files...

7.5AI score0.00738EPSS
Exploits2References1
WPVulnDB
WPVulnDB
added 2023/04/10 12:0 a.m.43 views

Download Manager Pro < 6.3.0 - Unauthenticated Sensitive Information Disclosure

The plugin leaks master key information without the need for a password, allowing attackers to download arbitrary password-protected package files. PoC - Create a password protected package containing one or more files. - Navigate to the download page of the package e.g. /download/package1 -...

7.5CVSS7.7AI score0.00738EPSS
Exploits2Affected Software1
Rows per page
Query Builder