PT-2024-17541 · WordPress · Cm Download Manager
Name of the Vulnerable Software and Affected Versions: CM Download Manager WordPress plugin versions prior to 2.9.0 Description: The issue concerns a lack of CSRF checks in certain areas of the plugin, which could allow attackers to trick logged-in administrators into deleting downloads via a CSR...