All 2 CVE vulnerabilities found in Simple Downloads List, with AI-generated Chinese analysis, references, and POCs.
Vendor: neofix
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-12583 | Simple Downloads List <= 1.4.3 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting CWE-862 | 6.4 | Medium | 2025-11-08 |
| CVE-2024-13594 | Simple Downloads List <= 1.4.2 - Authenticated (Contributor+) SQL Injection CWE-89 | 6.5 | Medium | 2025-01-24 |
All 2 known CVE vulnerabilities affecting Simple Downloads List with full Chinese analysis, references, and POCs where available.