WordPress Plugin Vulnerabilities

WP-DownloadManager < 1.69 - Authenticated (Admin+) Arbitrary File Upload

Description

The WP-DownloadManager plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the download-add.php file in all versions up to, and including, 1.68.11. This makes it possible for authenticated attackers, with Administrator-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.

Affects Plugins

Plugin icon
wp-downloadmanager
Fixed in 1.69

References

CVE
CVE-2025-10747
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/2c535cea-dad6-440f-b37f-6d196b469214

Miscellaneous

Original Researcher
n4ur15
Verified
No
WPVDB ID
cd1ce93f-f78c-43bc-a20d-5808d1be9947

Timeline

Publicly Published
2025-09-25 (about 9 months ago)
Added
2025-09-25 (about 9 months ago)
Last Updated
2025-09-26 (about 9 months ago)

Other

Published
Title
Published
2024-10-15
Title
File Manager Pro < 8.3.10 - Unauthenticated Backup File Download and Upload
Published
2018-10-31
Title
GoUrl Bitcoin Payment Gateway < 1.4.14 - Shell Upload
Published
2015-09-14
Title
EZ SQL Reports < 4.11.37 - Authenticated Arbitrary File Download
Published
2022-10-05
Title
Create Block Theme < 1.2.2 - Unauthenticated Arbitrary File Upload
Published
2025-08-27
Title
Pin WP < 7.2 - Authenticated (Subscriber+) Arbitrary File Upload