Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/05/23 7:17 a.m.10 views

CVE-2024-8444

The Download Manager WordPress plugin before 3.3.00 doesn't sanitize some of it's shortcode parameters, leading to cross site scripting...

5.4CVSS6.5AI score0.00304EPSS
Exploits1References1
cvelist
cvelist
added 2024/10/30 6:0 a.m.26 views

CVE-2024-8444 Download Manager < 3.3.00 - Contributor+ Stored XSS

The Download Manager WordPress plugin before 3.3.00 doesn't sanitize some of it's shortcode parameters, leading to cross site scripting...

0.00304EPSS
Exploits1References1
cve
cve
added 2024/10/30 6:0 a.m.51 views

CVE-2024-8444

CVE-2024-8444 concerns the WordPress Download Manager plugin prior to version 3.3.00. The vulnerability arises because certain shortcode parameters aren’t properly sanitized, enabling a cross-site scripting (XSS) issue. Affected product: Download Manager WordPress plugin (versions

5.4CVSS5.2AI score0.00304EPSS
Exploits1References1Affected Software1
vulnrichment
vulnrichment
added 2024/10/30 6:0 a.m.18 views

CVE-2024-8444 Download Manager < 3.3.00 - Contributor+ Stored XSS

The Download Manager WordPress plugin before 3.3.00 doesn't sanitize some of it's shortcode parameters, leading to cross site scripting...

6.3AI score0.00304EPSS
Exploits1References1
patchstack
patchstack
added 2024/10/30 12:0 a.m.18 views

WordPress Download Manager Plugin < 3.3.00 is vulnerable to Cross Site Scripting (XSS)

Software Download Manager Type Plugin Vulnerable versions 3.3.00 Fixed in 3.3.00 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8444 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 72a55938734a Credits Miguel Xavier Penha Net...

5.4CVSS6AI score0.00304EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder