2 matches found
WordPress Download Manager plugin <= 3.2.93 - Authenticated (Contributor+) Stored Cross-Site Scripting via wpdm_modal_login_form Shortcode vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via wpdmmodalloginform Shortcode vulnerability discovered by Thanh Nam Tran in WordPress Plugin Download Manager versions = 3.2.93...
Download Manager < 3.2.62 - Contributor+ Stored XSS
The plugin does not validate and escapes some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as a contributor to perform Stored Cross-Site Scripting attacks against logged-in admins. 1. “Enable modal login form” option in the...