| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-29114 | WordPress Download Manager plugin <= 3.2.84 - Cross Site Scripting (XSS) vulnerability | W3 Eden, Inc. | Download Manager | Medium | 6.5 | 2024-03-19 14:58:44 | Deep Dive |
| CVE-2023-6785 | Download Manager <= 3.2.84 - Missing Authorization | codename065 | Download Manager | Medium | 5.3 | 2024-03-13 15:26:59 | Deep Dive |
| CVE-2023-6954 | Download Manager <= 3.2.85 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | codename065 | Download Manager | Medium | 6.4 | 2024-03-13 15:26:51 | Deep Dive |
| CVE-2023-6421 | Download Manager < 3.2.83 - Unauthenticated Protected File Download Password Leak | Unknown | Download Manager | 中危 | - | 2024-01-01 14:18:54 | Deep Dive |
| CVE-2023-2305 | Download Manager <= 3.2.70 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | codename065 | Download Manager | Medium | 6.4 | 2023-06-09 05:33:26 | Deep Dive |
| CVE-2023-1524 | Download Manager < 3.2.71 - Broken Access Controls | Unknown | Download Manager | 中危 | - | 2023-05-30 07:49:11 | Deep Dive |
| CVE-2023-22713 | WordPress Gutenberg Blocks by WordPress Download Manager Plugin <= 2.1.8 is vulnerable to Cross Site Scripting (XSS) | WordPress Download Manager | Gutenberg Blocks by WordPress Download Manager | Medium | 6.5 | 2023-05-03 11:14:44 | Deep Dive |
| CVE-2023-1809 | Download Manager Pro < 6.3.0 - Unauthenticated Sensitive Information Disclosure | Unknown | Download Manager | 高危 | - | 2023-05-02 07:04:54 | Deep Dive |
| CVE-2022-45836 | WordPress Download Manager Plugin <= 3.2.59 is vulnerable to Cross Site Scripting (XSS) | W3 Eden, Inc. | Download Manager | High | 7.1 | 2023-04-18 13:58:06 | Deep Dive |
| CVE-2022-4476 | Download Manager < 3.2.62 - Contributor+ Stored XSS | Unknown | Download Manager | 中危 | - | 2023-01-16 15:38:02 | Deep Dive |
| CVE-2022-3076 | CM Download Manager < 2.8.6 - Admin+ Arbitrary File Upload | Unknown | CM Download Manager | 高危 | - | 2022-09-26 12:35:42 | Deep Dive |
| CVE-2022-2926 | Download Manager < 3.2.55 - Admin+ Arbitrary File/Folder Access via Path Traversal | Unknown | Download Manager | 中危 | - | 2022-09-26 12:35:35 | Deep Dive |
| CVE-2022-2436 | Download Manager <= 3.2.49 - Authenticated (Contributor+) PHAR Deserialization | codename065 | Download Manager | High | 8.8 | 2022-09-06 17:18:57 | Deep Dive |
| CVE-2022-2431 | Download Manager <= 3.2.50 - Authenticated (Contributor+) Arbitrary File Deletion | download-manager | Download Manager | High | 8.1 | 2022-09-06 17:18:56 | Deep Dive |
| CVE-2022-36288 | WordPress Download Manager plugin <= 3.2.48 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities | W3 Eden, Inc. | Download Manager (WordPress plugin) | Medium | 5.4 | 2022-08-23 15:47:10 | Deep Dive |
| CVE-2022-34658 | WordPress Download Manager plugin <= 3.2.48 - Multiple Authenticated Persistent Cross-Site Scripting (XSS) vulnerabilities | W3 Eden, Inc. | Download Manager (WordPress plugin) | Medium | 5.4 | 2022-08-23 15:46:34 | Deep Dive |
| CVE-2022-2362 | Download Manager < 3.2.50 - Bypass IP Address Blocking Restriction | Unknown | Download Manager | 高危 | - | 2022-08-22 15:01:39 | Deep Dive |
| CVE-2022-34347 | WordPress Download Manager plugin <= 3.2.48 - Cross-Site Request Forgery (CSRF) vulnerability | W3 Eden, Inc. | Download Manager (WordPress plugin) | Medium | 4.2 | 2022-08-22 14:47:17 | Deep Dive |
| CVE-2022-2101 | Download Manager <= 3.2.46 - Contributor+ Cross-Site Scripting | codename065 | Download Manager | Medium | 6.4 | 2022-07-18 16:13:21 | Deep Dive |
| CVE-2022-2168 | Download Manager < 3.2.44 - Reflected Cross-Site Scripting | Unknown | Download Manager | 中危 | - | 2022-07-17 10:36:46 | Deep Dive |