WordPress Plugin Vulnerabilities

Download Manager < 3.3.41 - Unauthenticated Limited Privilege Escalation

Description

The plugin is vulnerable to privilege escalation via account takeover due to the plugin not properly validating a user's identity prior to updating their details like password. This makes it possible for unauthenticated attackers to change user's passwords, except administrators, and leverage that to gain access to their account.

Affects Plugins

Plugin icon
download-manager
Fixed in 3.3.41

References

CVE
CVE-2025-15364
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/067031e8-6aa8-451c-a318-b1848c7a4f92

Classification

Type
PRIVESC
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-269
CVSS
5.6 (medium)

Miscellaneous

Original Researcher
Drew Webber (mcdruid)
Verified
No
WPVDB ID
4c8dc469-0f58-442d-9b30-b9acbbf7b7d6

Timeline

Publicly Published
2026-01-05 (about 4 months ago)
Added
2026-01-05 (about 4 months ago)
Last Updated
2026-01-05 (about 4 months ago)

Other

Published
Title
Published
2021-06-28
Title
ProfilePress 3.0 - 3.1.3 - Unauthenticated Privilege Escalation
Published
2020-03-11
Title
MStore API < 2.1.6 - Unauthenticated Arbitrary Account Creation/Edition
Published
2023-03-06
Title
Multiple e-plugins - Subscriber+ Privilege Escalation
Published
2024-12-17
Title
WPLMS < 1.9.9.1 - Unauthenticated Privilege Escalation
Published
2024-08-07
Title
Woffice < 5.4.12 - Unauthenticated Privilege Escalation