Filter
WordPress Download Manager Premium PackagesThe Premium Packages - Sell Digital Products Securely plugin for WordPress is vulnerable to privileg…
8.8
First published (updated )
WP Download ManagerDownload Manager Pro < 6.3.0 - Unauthenticated Sensitive Information Disclosure
7.5
First published (updated )
WP Download ManagerDownload Manager <= 3.3.03 - Unauthenticated Arbitrary Shortcode Execution
7.3
First published (updated )
Download manager Download managerDownload manager <= 3.3.03 - Improper Authorization to Unauthenticated Download of Password-Protected Files
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
WP Download ManagerDownload Manager < 3.2.71 - Broken Access Controls
6.5
First published (updated )
WP Download ManagerWordPress Download Manager Plugin <= 3.2.59 is vulnerable to Cross Site Scripting (XSS)
7.1
First published (updated )
WP Download ManagerDownload Manager <= 3.2.92 - Authenticated (Author+) Stored Cross-Site Scripting via Multiple Shortcodes
6.4
EPSS
0.13%
First published (updated )
WP Download ManagerDownload Manager <= 3.2.93 - Authenticated (Contributor+) Stored Cross-Site Scripting via wpdm_modal_login_form Shortcode
6.4
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
WordPress Download Manager Premium PackagesWordPress Premium Packages – Sell Digital Products Securely plugin <= 5.9.3 - SQL Injection vulnerability
7.6
First published (updated )
WordPress Download ManagerWordPress Download Manager plugin <= 3.2.48 - Cross-Site Request Forgery (CSRF) vulnerability
8.8
First published (updated )
WordPress Download ManagerWordPress Download Manager plugin <= 3.2.48 - Multiple Authenticated Persistent Cross-Site Scripting (XSS) vulnerabilities
5.4
First published (updated )
WordPress Download ManagerWordPress Download Manager plugin <= 3.2.48 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities
8.8
First published (updated )
WordPress Download ManagerDirectory traversal vulnerability in the WordPress Download Manager plugin for WordPress allows remo…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
WordPress Download ManagerDownload Manager Plugin cross-site request forgery
4.3
First published (updated )
WordPress Download ManagerOpen redirect vulnerability in WordPress Download Manager prior to version 2.9.51 allows remote atta…
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
WordPress Download ManagerWordPress Download Manager <= 3.1.24 Authenticated Arbitrary File Upload
8.8
First published (updated )
WordPress Download ManagerWordPress Download Manager <= 3.1.24 Authenticated Directory Traversal
6.5
First published (updated )
WP Download ManagerWordPress Download Manager < 3.2.34 - Authenticated SQL Injection to Reflected XSS
8.8
First published (updated )
WordPress Download ManagerWordpress Download Manager < 3.2.25 - Sensitive Information Disclosure
7.5
First published (updated )
WordPress Download ManagerDownload Manager < 3.2.22 - Subscriber+ Stored Cross-Site Scripting
5.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
WordPress Download ManagerWordPress Download Manager < 3.2.16 - Admin+ Stored Cross-Site Scripting
4.8
First published (updated )
WordPress Download ManagerDownload Manager < 3.2.62 - Contributor+ Stored XSS
5.4
First published (updated )
WordPress Download ManagerThe Download Manager plugin for WordPress is vulnerable to deserialization of untrusted input via th…
8.8
First published (updated )
WordPress Download ManagerDownload Manager <= 3.2.50 - Authenticated (Contributor+) Arbitrary File Deletion
8.8
First published (updated )
WordPress Download ManagerDownload Manager < 3.2.50 - Bypass IP Address Blocking Restriction
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.