CVE-2022-2436
CVE-2022-2436 relates to the WordPress Download Manager plugin (versions up to and including 3.2.49). The vulnerability is a deserialization of untrusted input via the file[package_dir] parameter, allowing authenticated attackers with contributor privileges and above to upload a file containing a...