WordPress Plugin Vulnerabilities

Download Manager < 3.2.71 - Contributor+ Stored Cross-Site Scripting

Description

The plugin does not properly sanitize and escape user-supplied attributes in 'wpdm_members', 'wpdm_login_form', and 'wpdm_reg_form' shortcodes, leading to Stored Cross-Site Scripting vulnerabilities.

Affects Plugins

Plugin icon
download-manager
Fixed in 3.2.71

References

CVE
CVE-2023-2305
URL
https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/download-manager/download-manager-3270-authenticated-contributor-stored-cross-site-scripting-via-shortcode

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.4 (medium)

Miscellaneous

Original Researcher
Lana Codes
Verified
No
WPVDB ID
a2813655-91d3-49ec-acc3-69b2c8f81631

Timeline

Publicly Published
2023-05-12 (about 2 years ago)
Added
2023-06-09 (about 2 years ago)
Last Updated
2023-06-09 (about 2 years ago)

Other

Published
Title
Published
2024-06-06
Title
Eduma < 5.4.8 - Reflected Cross-Site Scripting
Published
2017-04-10
Title
WP Statistics <= 12.0.4 - Reflected Cross-Site Scripting (XSS)
Published
2024-11-22
Title
Slotti Ajanvaraus < 1.3.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2024-03-25
Title
Astra < 4.6.5 - Editor+ Stored XSS via Theme Header/Footer
Published
2021-09-06
Title
CM Tooltip Glossary < 3.9.21 - Contributor+ Stored Cross-Site Scripting