CVE-2025-3851 | Download Manager and Payment Form Plugin up to 2.7.13 on WordPress show resource injection

Inserito da Angelo Barbosa | Mag 6, 2025 | CVE

A vulnerability was found in Download Manager and Payment Form Plugin up to 2.7.13 on WordPress. It has been rated as problematic. Affected by this issue is the function show. The manipulation leads to improper control of resource identifiers.

This vulnerability is handled as CVE-2025-3851. The attack may be launched remotely. There is no exploit available.

CVE-2025-3851 | Download Manager and Payment Form Plugin up to 2.7.13 on WordPress show resource injection

Post correlati

CVE-2024-5275 | Fortra FileCatalyst Direct/FileCatalyst Workflow hard-coded password

CVE-2022-20655 | Cisco IOS XR Software CLI os command injection (cisco-sa-cli-cmdinj-4MttWZPB)

CVE-2020-11917 | Svakom Siime Eye 14.1.00000001.3.330.0.0.3.14 SSID information disclosure

CVE-2022-46795 | Tyche Softwares Print Invoice & Delivery Notes for WooCommerce Plugin authorization