logoWordPressPluginsThemesAPISubmitContact
search-icon
logo
search-icon
WordPressPluginsThemesAPISubmitContactSecurity Scanner
Register

Download Manager <= 2.7.4 - Code Execution / Remote File Inclusion

Description

The WordPress Download Manager WordPress plugin was affected by a Code Execution / Remote File Inclusion security vulnerability.

Affects Plugins

download-manager

Fixed in version 2.7.5

References

URL

https://blog.sucuri.net/2014/12/security-advisory-high-severity-wordpress-download-manager.html

ExploitDB

35533

Metasploit

exploit/unix/webapp/wp_downloadmanager_upload

Classification

Type

UPLOAD

CWE

CWE-434

Miscellaneous

Submitter

ethicalhack3r

Submitter twitter

ethicalhack3r

Verified

Yes

WPVDB ID

b0ac361a-bad1-48f0-9554-3fca6c67054c

Timeline

Publicly Published

2014-12-03 (about 6 years ago)

Added

2014-12-03 (about 6 years ago)

Last Updated

2019-10-21 (about 2 years ago)

Our Other Services

WPScan WordPress Security Plugin