Lucene search
K

7 matches found

0day.today
0day.today
added 2019/09/05 12:0 a.m.55 views

WordPress Download Manager 2.9.93 Plugin - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: WordPress Download Manager Cross-site Scripting Exploit Author: ThuraMoeMyint Author Link: https://twitter.com/mgthuramoemyint Vendor Homepage: https://www.wpdownloadmanager.com Software Link:...

4.3CVSS0.12531EPSS
Exploits6
exploitpack
exploitpack
added 2019/09/04 12:0 a.m.50 views

WordPress Plugin Download Manager 2.9.93 - Cross-Site Scripting

WordPress Plugin Download Manager 2.9.93 - Cross-Site Scripting Exploit Title: WordPress Download Manager Cross-site Scripting Discovery Date: 2019-04-13 Exploit Author: ThuraMoeMyint Author Link: https://twitter.com/mgthuramoemyint Vendor Homepage: https://www.wpdownloadmanager.com Software Link...

4.3CVSS6.1AI score0.12531EPSS
Exploits6
Exploit DB
Exploit DB
added 2019/09/04 12:0 a.m.416 views

WordPress Plugin Download Manager 2.9.93 - Cross-Site Scripting

Exploit Title: WordPress Download Manager Cross-site Scripting Discovery Date: 2019-04-13 Exploit Author: ThuraMoeMyint Author Link: https://twitter.com/mgthuramoemyint Vendor Homepage: https://www.wpdownloadmanager.com Software Link: https://wordpress.org/plugins/download-manager Version: 2.9.93...

6.1CVSS6.5AI score0.12531EPSS
Exploits6
Packet Storm
Packet Storm
added 2019/09/04 12:0 a.m.281 views

WordPress Download Manager 2.9.93 Cross Site Scripting

Exploit Title: WordPress Download Manager Cross-site Scripting Discovery Date: 2019-04-13 Exploit Author: ThuraMoeMyint Author Link: https://twitter.com/mgthuramoemyint Vendor Homepage: https://www.wpdownloadmanager.com Software Link: https://wordpress.org/plugins/download-manager Version: 2.9.93...

6.3AI score0.12531EPSS
Exploits6
OSV
OSV
added 2019/09/03 6:15 p.m.2 views

CVE-2019-15889

The download-manager plugin before 2.9.94 for WordPress has XSS via the category shortcode feature, as demonstrated by the orderby or searchpublishdate parameter...

6.1CVSS6.3AI score0.12531EPSS
Exploits6References7
CVE
CVE
added 2019/09/03 5:7 p.m.188 views

CVE-2019-15889

Summary: CVE-2019-15889 affects the WordPress Download Manager plugin prior to 2.9.94. The vulnerability is a cross-site scripting (XSS) flaw in the category shortcode feature, exploitable via the orderby or publish_date parameters (e.g., ?orderby=title,publish_date or similar). Impact (as stated...

6.1CVSS5.9AI score0.12531EPSS
Exploits6References7Affected Software1
Cvelist
Cvelist
added 2019/09/03 5:7 p.m.25 views

CVE-2019-15889

The download-manager plugin before 2.9.94 for WordPress has XSS via the category shortcode feature, as demonstrated by the orderby or searchpublishdate parameter...

6.1CVSS6.1AI score0.12531EPSS
Exploits6References7
Rows per page
Query Builder