WordPress Plugin Vulnerabilities

Download Monitor < 1.9.7 - Unauthenticated Downloading of Logs

Description

An Unauthenticated attacker can export download logs from the Plugin. Which includes: Download ID, Version ID, Filename, User ID, User Login, User Email, User IP, User Agent, Date, Status.

The information could potentially be used to mount further attacks or just collect contact information.

Affects Plugins

Plugin icon
download-monitor
Fixed in 1.9.7

References

URL
https://wordpress.org/plugins/download-monitor/
URL
https://github.com/download-monitor/download-monitor/commit/72d76b34a372101f0f68e904c1665f688797b662

Classification

Type
AUTHBYPASS
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-287
CVSS
5.3 (medium)

Miscellaneous

Submitter
James Golovich
Submitter website
https://pritect.net
Submitter twitter
Pritect
Verified
No
WPVDB ID
a9d39906-1704-43c9-a503-759c72ab465e

Timeline

Publicly Published
2017-05-05 (about 9 years ago)
Added
2017-05-11 (about 9 years ago)
Last Updated
2021-10-06 (about 4 years ago)

Other

Published
Title
Published
2023-12-27
Title
Login as User or Customer (User Switching) <= 3.8 - Authentication Bypass
Published
2022-08-09
Title
Simple Single Sign On <= 4.1.0 - Authentication Bypass
Published
2026-03-17
Title
KiviCare – Clinic & Patient Management System (EHR) < 4.1.3 - Unauthenticated Authentication Bypass via Social Login Token
Published
2025-02-11
Title
Customer Email Verification for WooCommerce < 2.9.6 - Authentication Bypass via Shortcode
Published
2020-03-31
Title
Elementor Page Builder < 2.9.6 - Authenticated Safe Mode Privilege Escalation