Easy Digital Downloads@* Security Vulnerabilities and Issues — Easy Digital Downloads@* CVE List

Lucene search

AwesomemotiveEasy Digital Downloads*

3 matches found

CVE•added 2025/05/29 9:15 a.m.•65 views

CVE-2025-4670

The Easy Digital Downloads – eCommerce Payments and Subscriptions made easy plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's edd_receipt shortcode in all versions up to, and including, 3.3.8.1 due to insufficient input sanitization and output escaping on user suppl...

6.4CVSS5.7AI score0.00039EPSS

CVE•added 2025/03/25 7:15 a.m.•42 views

CVE-2025-2252

The Easy Digital Downloads – eCommerce Payments and Subscriptions made easy plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.6.1 via the edd_ajax_get_download_title() function. This makes it possible for unauthenticated attackers to extr...

5.3CVSS7.1AI score0.00069EPSS

CVE•added 2025/01/18 7:15 a.m.•37 views

CVE-2024-13517

The Easy Digital Downloads – eCommerce Payments and Subscriptions made easy plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Title value in all versions up to, and including, 3.3.2 due to insufficient input sanitization and output escaping. This makes it possible for authen...

4.4CVSS5.8AI score0.00044EPSS