5 matches found
CVE-2025-23541
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in edmon.parker Download, Downloads ydn-download allows Reflected XSS.This issue affects Download, Downloads : from n/a through = 1.4.2...
CVE-2025-23541
creationtimestamp| type| source ---|---|--- 2025-01-23 16:16:15+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lggbqyoyqf2x...
CVE-2025-23541
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in edmon.parker Download, Downloads ydn-download allows Reflected XSS.This issue affects Download, Downloads : from n/a through = 1.4.2...
CVE-2025-23541
CVE-2025-23541 is a Reflected XSS vulnerability in the WordPress plugin “Download, Downloads” (WordPress Download plugin by Edmon, also listed as ydn-download). The issue arises from improper neutralization of input during web page generation, enabling an attacker-controlled payload to be reflect...
CVE-2025-23541 WordPress Download, Downloads plugin <= 1.4.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in edmon.parker Download, Downloads ydn-download allows Reflected XSS.This issue affects Download, Downloads : from n/a through = 1.4.2...