Filtered by vendor Simple Download Monitor Project Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2018-5213 1 Simple Download Monitor Project 1 Simple Download Monitor 2024-11-21 N/A
The Simple Download Monitor plugin before 3.5.4 for WordPress has XSS via the sdm_upload (aka Downloadable File) parameter in an edit action to wp-admin/post.php.
CVE-2018-5212 1 Simple Download Monitor Project 1 Simple Download Monitor 2024-11-21 N/A
The Simple Download Monitor plugin before 3.5.4 for WordPress has XSS via the sdm_upload_thumbnail (aka File Thumbnail) parameter in an edit action to wp-admin/post.php.