5 matches found
CVE-2024-8444
The Download Manager WordPress plugin before 3.3.00 doesn't sanitize some of it's shortcode parameters, leading to cross site scripting...
CVE-2024-8444 Download Manager < 3.3.00 - Contributor+ Stored XSS
The Download Manager WordPress plugin before 3.3.00 doesn't sanitize some of it's shortcode parameters, leading to cross site scripting...
CVE-2024-8444
CVE-2024-8444 concerns the WordPress Download Manager plugin prior to version 3.3.00. The vulnerability arises because certain shortcode parameters aren’t properly sanitized, enabling a cross-site scripting (XSS) issue. Affected product: Download Manager WordPress plugin (versions
CVE-2024-8444 Download Manager < 3.3.00 - Contributor+ Stored XSS
The Download Manager WordPress plugin before 3.3.00 doesn't sanitize some of it's shortcode parameters, leading to cross site scripting...
WordPress Download Manager Plugin < 3.3.00 is vulnerable to Cross Site Scripting (XSS)
Software Download Manager Type Plugin Vulnerable versions 3.3.00 Fixed in 3.3.00 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8444 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 72a55938734a Credits Miguel Xavier Penha Net...