CVE-2024-4001 | Download Manager Plugin up to 3.2.93 on WordPress Shortcode wpdm_modal_login_form cross site scripting

Inserito da Angelo Barbosa | Giu 5, 2024 | CVE

A vulnerability has been found in Download Manager Plugin up to 3.2.93 on WordPress and classified as problematic. Affected by this vulnerability is the function wpdm_modal_login_form of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-4001. The attack can be launched remotely. There is no exploit available.

CVE-2024-4001 | Download Manager Plugin up to 3.2.93 on WordPress Shortcode wpdm_modal_login_form cross site scripting

Post correlati

CVE-2024-8652 | NetCat CMS up to 6.4.0.24126.2 cross site scripting (tCat-2024-002)

CVE-2024-39123 | janeczku Calibre-Web up to 0.6.21 edit_book_comments cross site scripting

CVE-2024-4923 | Codezips E-Commerce Site 1.0 admin/addproduct.php profilepic unrestricted upload

CVE-2024-26898 | Linux Kernel up to 6.8.1 aoecmd_cfg_pkts use after free