The Download Manager WordPress plugin before 3.3.00 doesn't sanitize some of it's shortcode parameters, leading to cross site scripting.
Metrics
Affected Vendors & Products
References
History
Wed, 30 Oct 2024 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
W3eden
W3eden download Manager |
|
CPEs | cpe:2.3:a:w3eden:download_manager:*:*:*:*:*:*:*:* | |
Vendors & Products |
W3eden
W3eden download Manager |
|
Metrics |
cvssV3_1
|
Wed, 30 Oct 2024 06:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | The Download Manager WordPress plugin before 3.3.00 doesn't sanitize some of it's shortcode parameters, leading to cross site scripting. | |
Title | Download Manager < 3.3.00 - Contributor+ Stored XSS | |
References |
|
MITRE
Status: PUBLISHED
Assigner: WPScan
Published: 2024-10-30T06:00:03.652Z
Updated: 2024-10-30T13:38:38.940Z
Reserved: 2024-09-04T22:43:14.072Z
Link: CVE-2024-8444
Vulnrichment
Updated: 2024-10-30T13:37:22.266Z
NVD
Status : Awaiting Analysis
Published: 2024-10-30T07:15:16.060
Modified: 2024-11-01T12:57:03.417
Link: CVE-2024-8444
Redhat
No data.