Lucene search

K
AwesomemotiveEasy Digital Downloads

55 matches found

CVE
CVE
added 2025/01/18 7:15 a.m.37 views

CVE-2024-13517

The Easy Digital Downloads – eCommerce Payments and Subscriptions made easy plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Title value in all versions up to, and including, 3.3.2 due to insufficient input sanitization and output escaping. This makes it possible for authen...

4.4CVSS5.8AI score0.00047EPSS
CVE
CVE
added 2024/11/01 3:15 p.m.36 views

CVE-2024-43162

Missing Authorization vulnerability in Easy Digital Downloads allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Digital Downloads: from n/a through 3.2.12.

8.8CVSS4.6AI score0.00251EPSS
CVE
CVE
added 2024/12/17 12:15 p.m.36 views

CVE-2024-9654

The Easy Digital Downloads plugin for WordPress is vulnerable to Improper Authorization in versions 3.1 through 3.3.4. This is due to a lack of sufficient validation checks within the 'verify_guest_email' function to ensure the requesting user is the intended recipient of the purchase receipt. This...

3.7CVSS4.3AI score0.00042EPSS
CVE
CVE
added 2024/08/12 1:38 p.m.34 views

CVE-2024-6692

The Easy Digital Downloads – Sell Digital Files & Subscriptions (eCommerce Store + Payments Made Easy) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Agreement Text value in all versions up to, and including, 3.3.2 due to insufficient input sanitization and output escapin...

3.3CVSS3.6AI score0.0008EPSS
CVE
CVE
added 2024/08/12 1:38 p.m.32 views

CVE-2024-6691

The Easy Digital Downloads – Sell Digital Files & Subscriptions (eCommerce Store + Payments Made Easy) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the currency value in all versions up to, and including, 3.3.2 due to insufficient input sanitization and output escaping. Thi...

4.4CVSS4.4AI score0.00073EPSS
Total number of security vulnerabilities55