WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Download Manager <= 2.9.50 - Open Redirect

Description

The WordPress Download Manager WordPress plugin was affected by an Open Redirect security vulnerability.

Affects Plugins

download-manager
Fixed in version 2.9.51

References

CVE
CVE-2017-2217
URL
https://jvn.jp/en/jp/JVN79738260/index.html
URL
https://plugins.trac.wordpress.org/changeset/1650075/

Classification

Type

REDIRECT

OWASP top 10
A1: Injection
CWE
CWE-601

Miscellaneous

Submitter

ethicalhack3r

Submitter twitter
ethicalhack3r
Verified

No

WPVDB ID
a244cd45-e09c-44f6-8796-de96492b0567

Timeline

Publicly Published

2017-07-13 (about 5 years ago)

Added

2017-07-16 (about 5 years ago)

Last Updated

2020-09-22 (about 2 years ago)

Our Other Services

WPScan WordPress Security Plugin