Lucene search
K

5 matches found

NVD
NVD
added 2025/06/20 3:15 p.m.4 views

CVE-2025-49995

Authorization Bypass Through User-Controlled Key vulnerability in dFactory Download Attachments download-attachments allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Download Attachments: from n/a through = 1.3.1...

5.3CVSS0.00297EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/20 3:4 p.m.4 views

CVE-2025-49995 WordPress Download Attachments plugin <= 1.3.1 - Insecure Direct Object References (IDOR) Vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in dFactory Download Attachments allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Download Attachments: from n/a through 1.3.1...

5.3CVSS7.1AI score0.00297EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/20 3:4 p.m.19 views

CVE-2025-49995 WordPress Download Attachments plugin <= 1.3.1 - Insecure Direct Object References (IDOR) vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in dFactory Download Attachments download-attachments allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Download Attachments: from n/a through = 1.3.1...

5.3CVSS0.00297EPSS
Exploits0References1
CVE
CVE
added 2025/06/20 3:4 p.m.20 views

CVE-2025-49995

CVE-2025-49995 concerns the WordPress Download Attachments plugin (versions

5.3CVSS5.9AI score0.00297EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/06/19 4:31 p.m.6 views

WordPress Download Attachments plugin <= 1.3.1 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by haudayroi - BlueRock in WordPress Plugin Download Attachments versions = 1.3.1...

5.3CVSS6.8AI score0.00297EPSS
Exploits0Affected Software1
Rows per page
Query Builder