EUVD-2025-31308

Malicious code in bioql PyPI...

CVE-2025-60093 WordPress Download Manager Plugin <= 3.3.24 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in Shahjada Download Manager download-manager allows Cross Site Request Forgery.This issue affects Download Manager: from n/a through = 3.3.24...

CVE-2025-60093 WordPress Download Manager Plugin <= 3.3.24 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in Shahjada Download Manager download-manager allows Cross Site Request Forgery.This issue affects Download Manager: from n/a through = 3.3.24...

CVE-2025-60092 WordPress Download Manager Plugin <= 3.3.25 - Sensitive Data Exposure Vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Shahjada Download Manager download-manager allows Retrieve Embedded Sensitive Data.This issue affects Download Manager: from n/a through = 3.3.25...

CVE-2025-60092

CVE-2025-60092 affects the Download Manager WordPress plugin (versions up to 3.3.24/3.3.25 per sources) and is an unauthenticated exposure of sensitive information. Exploitation details are not provided in the documents, but WordFence notes the vulnerability as a sensitive information exposure an...

CVE-2025-60092 WordPress Download Manager Plugin <= 3.3.25 - Sensitive Data Exposure Vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Shahjada Download Manager download-manager allows Retrieve Embedded Sensitive Data.This issue affects Download Manager: from n/a through = 3.3.25...

PT-2025-39540

Name of the Vulnerable Software and Affected Versions Shahjada Download Manager versions through 3.3.24 Description A Cross-Site Request Forgery CSRF issue exists in Shahjada Download Manager. This allows attackers to perform actions on behalf of an authenticated user without their knowledge...

PT-2025-39539

Name of the Vulnerable Software and Affected Versions Shahjada Download Manager versions through 3.3.24 Description A flaw exists in Shahjada Download Manager that could allow unauthorized retrieval of embedded sensitive data, potentially exposing system information. Recommendations Update Shahja...

WordPress Download Manager plugin <= 3.3.23 - Reflected Cross-Site Scripting via `user_ids` Parameter vulnerability

Reflected Cross-Site Scripting via userids Parameter vulnerability discovered by vgo0 in WordPress Plugin Download Manager versions = 3.3.23...

PT-2024-37284 · WordPress · Masterstudy Lms Wordpress Plugin

Name of the Vulnerable Software and Affected Versions: The MasterStudy LMS WordPress Plugin versions prior to 3.3.24 Description: The issue allows students to create instructor accounts, potentially granting them access to unauthorized functionalities. Recommendations: For versions prior to 3.3.2...