CVE-2025-13498 | Download Manager Plugin up to 3.3.32 on WordPress Setting wpdm_media_access authorization

Inserito da Angelo Barbosa | Dic 17, 2025 | CVE

A vulnerability was found in Download Manager Plugin up to 3.3.32 on WordPress. It has been declared as problematic. This affects the function wpdm_media_access of the component Setting Handler. Executing manipulation can lead to missing authorization.

This vulnerability is tracked as CVE-2025-13498. The attack can be launched remotely. No exploit exists.

CVE-2025-13498 | Download Manager Plugin up to 3.3.32 on WordPress Setting wpdm_media_access authorization

Post correlati

CVE-2025-4840 | WP-FeedStats inprosysmedia-likes-dislikes-post Plugin up to 1.0.0 on WordPress sql injection

CVE-2024-5956 | Trellix Intrusion Prevention System Manager 11.1.7.97 authentication bypass

CVE-2024-4521 | Campcodes Complete Web-Based School Management System 1.0 teacher_salary_details2.php index cross site scripting

CVE-2025-36609 | Dell SmartFabric OS10 Software 10.5.3/10.5.4/10.5.5/10.5.6/10.6.0 hard-coded password (dsa-2025-259)