2 matches found
CVE-2018-5213
The Simple Download Monitor plugin before 3.5.4 for WordPress has XSS via the sdmupload aka Downloadable File parameter in an edit action to wp-admin/post.php...
CVE-2018-5213
The vulnerability CVE-2018-5213 affects the WordPress Simple Download Monitor plugin prior to 3.5.4, where the sdm_upload (Downloadable File) parameter in an edit action to wp-admin/post.php can be exploited for XSS. Reports across NVD, CVE entries, and vendor databases consistently describe an a...