Description

WordPress Plugin Download Monitor is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Download Monitor version 4.4.6 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 4.4.7 or latest

References

https://github.com/WPChill/download-monitor/blob/master/changelog.txt

Related Vulnerabilities

WordPress Plugin Page Builder:PageLayer-Drag and Drop website builder Cross-Site Request Forgery (1.1.1)

Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-9591)

WordPress Plugin Question and Answer Forum 'title' Variable Cross-Site Scripting (1.2.4)

WordPress Plugin Software License Manager Cross-Site Scripting (4.4.9)

TYPO3 Insertion of Sensitive Information into Log File Vulnerability (CVE-2021-32767)

Severity

High

Tags

Missing Update