CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Cminds: >> Cm Download Manager >> 2.8.9 Security Vulnerabilities

CVE-2024-1231

The CM Download Manager WordPress plugin before 2.9.0 does not have CSRF checks in some places, which could allow attackers to make logged in admins unpublish downloads via a CSRF attack

CVSS Score

6.8

EPSS Score

0.001

Published

2024-03-25

CVE-2024-1232

The CM Download Manager WordPress plugin before 2.9.0 does not have CSRF checks in some places, which could allow attackers to make logged in admins delete downloads via a CSRF attack

CVSS Score

4.8

EPSS Score

0.001

Published

2024-03-25

CVE-2024-1962

The CM Download Manager WordPress plugin before 2.9.1 does not have CSRF checks in some places, which could allow attackers to make logged in admins edit downloads via a CSRF attack

CVSS Score

8.8

EPSS Score

0.006

Published

2024-03-25

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved