4 matches found
CVE-2017-2217
Open redirect vulnerability in WordPress Download Manager prior to version 2.9.51 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...
CVE-2017-2217
CVE-2017-2217 is an Open Redirect vulnerability in the WordPress Download Manager plugin for WordPress, present in versions prior to 2.9.51. An attacker can craft a URL that redirects the user to an arbitrary site, enabling phishing or credential-phishing scenarios. Affected product: WordPress Do...
CVE-2017-2217
Open redirect vulnerability in WordPress Download Manager prior to version 2.9.51 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...
JVN#79738260: Multiple vulnerabilities in WordPress plugin "WordPress Download Manager"
The WordPress plugin "WordPress Download Manager" provided by W3 Eden, Inc. contains multiple vulnerabilities listed below. Cross-site scripting CWE-79 - CVE-2017-2216 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base Score: 6.1 CVSS v2|...