Lucene search
WordPress Download Manager < 3.2.16 - Admin+ Stored Cross-Site Scripting
WordPress Download Manager < 3.2.16 - Admin+ Stored Cross-Site Scripting The plugin does not escape some of the Download settings when outputting them, allowing high privilege users to perform XSS attacks even when the unfiltered_html capability is disallowe
Show more
| Reporter | Title | Published | Views | Family All 8 |
|---|---|---|---|---|
 | WordPress Download Manager < 3.2.16 - Admin+ Stored Cross-Site Scripting | 29 Sep 202100:00 | – | wpexploit |
 | WordPress Download Manager Plugin Cross-Site Scripting (CVE-2021-24773) | 28 Dec 202100:00 | – | checkpoint_advisories |
 | WordPress Download Manager Plugin < 3.2.16 XSS Vulnerability | 15 Nov 202100:00 | – | openvas |
 | CVE-2021-24773 | 1 Nov 202109:15 | – | nvd |
 | Design/Logic Flaw | 1 Nov 202109:15 | – | prion |
 | CVE-2021-24773 | 1 Nov 202109:15 | – | cve |
 | CVE-2021-24773 WordPress Download Manager < 3.2.16 - Admin+ Stored Cross-Site Scripting | 1 Nov 202108:46 | – | cvelist |
 | WordPress Download Manager Plugin Cross-Site Scripting Vulnerability | 4 Nov 202100:00 | – | cnvd |
Node
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo29 Sep 2021 00:00Current
0.5Low risk
Vulners AI Score0.5
EPSS0.00195