CVE-2025-68850

Missing Authorization vulnerability in codepeople Sell Downloads sell-downloads allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sell Downloads: from n/a through = 1.1.12...

CVE-2025-68850 WordPress Sell Downloads plugin <= 1.1.12 - Broken Access Control vulnerability

Missing Authorization vulnerability in Codepeople Sell Downloads allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sell Downloads: from n/a through 1.1.12...

CVE-2025-68850 WordPress Sell Downloads plugin <= 1.1.12 - Broken Access Control vulnerability

Missing Authorization vulnerability in codepeople Sell Downloads sell-downloads allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sell Downloads: from n/a through = 1.1.12...

CVE-2025-68850

CVE-2025-68850 describes a Missing Authorization vulnerability in the Sell Downloads plugin for WordPress (Sell Downloads, up to version 1.1.12). The issue, as listed, involves access control/configuration gaps that could permit unauthorized access to the plugin’s features or data. The CVSS 3.1 b...

WordPress plugin Sell Downloads 安全漏洞

WordPress and WordPress plugin are products of the WordPress Foundation, a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPre...

PT-2026-1271

Name of the Vulnerable Software and Affected Versions Codepeople Sell Downloads versions through 1.1.12 Description A missing authorization flaw exists in Codepeople Sell Downloads, stemming from incorrectly configured access control security levels. This allows for unauthorized access...

WordPress Sell Downloads plugin <= 1.1.12 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Jarno Vos jrn5151 in WordPress Plugin Sell Downloads versions = 1.1.12...

CVE-2015-9348

The sell-downloads plugin before 1.0.8 for WordPress has insufficient restrictions on brute-force guessing of purchase IDs...

WordPress Sell Downloads Cross-Site Scripting Vulnerability

WordPress is a blogging platform based on the PHP language, which can be used to set up a website on a server that supports PHP and MySQL databases, and can also be used as a content management system CMS. WordPress Sell Downloads suffers from a cross-site scripting vulnerability that can be...

WordPress Sell Downloads 1.0.86 Plugin - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: WordPress Plugin Sell Downloads 1.0.86 - Cross Site Scripting Exploit Author: Mr Winst0n Author E-mail: email protected Discovery Date: September 09,2019 Vendor Homepage:...

WordPress Sell Downloads 1.0.86 Cross Site Scripting

Exploit Title: WordPress Plugin Sell Downloads 1.0.86 - Cross Site Scripting Exploit Author: Mr Winst0n Author E-mail: [email protected] Discovery Date: September 09,2019 Vendor Homepage: https://wordpress.dwbooster.com/content-tools/sell-downloads Software Link :...

WordPress Plugin Sell Downloads 1.0.86 - Cross-Site Scripting

WordPress Plugin Sell Downloads 1.0.86 - Cross-Site Scripting Exploit Title: WordPress Plugin Sell Downloads 1.0.86 - Cross Site Scripting Exploit Author: Mr Winst0n Author E-mail: [email protected] Discovery Date: September 09,2019 Vendor Homepage:...

WordPress Plugin Sell Downloads 1.0.86 - Cross-Site Scripting

Exploit Title: WordPress Plugin Sell Downloads 1.0.86 - Cross Site Scripting Exploit Author: Mr Winst0n Author E-mail: [email protected] Discovery Date: September 09,2019 Vendor Homepage: https://wordpress.dwbooster.com/content-tools/sell-downloads Software Link :...

WordPress sell-downloads plugin information disclosure vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. sell-downloads is a paid downloadable site builder plugin used in it. A security vulnerability exists in WordPress sell-downloads plug...

CVE-2015-9348

The sell-downloads plugin before 1.0.8 for WordPress has insufficient restrictions on brute-force guessing of purchase IDs...

Design/Logic Flaw

The sell-downloads plugin before 1.0.8 for WordPress has insufficient restrictions on brute-force guessing of purchase IDs...

CVE-2015-9348

CVE-2015-9348 affects the WordPress Sell Downloads plugin prior to version 1.0.8. The vulnerability arises from insufficient restrictions on brute-force guessing of purchase IDs, enabling an attacker to obtain purchase IDs. Multiple connected sources (Red Hat, CNVD, WPVulndb, NVD) corroborate thi...

CVE-2015-9348

The sell-downloads plugin before 1.0.8 for WordPress has insufficient restrictions on brute-force guessing of purchase IDs...

WordPress Sell Downloads Plugin 1.0.16 - Local File Disclosure

WordPress Sell Downloads plugin is prone to a local file disclosure vulnerability that allows an attacker to get potentially sensitive information from local files on computers running the vulnerable application. Solution Upgrade the plugin...

Sell Downloads 1.0.1 - Arbitrary File Disclosure

Due to the lack of sanitation of of user input, it is possible to download arbitrary files from site, under the context of the web server. This could lead to disclosure of server configuration, or other sensitive information...