Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
download manager vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2021-32506
Absolute Path Traversal vulnerability in GetImage in QSAN Storage Manager allows remote authenticated attackers download arbitrary files via the Url path parameter. The referred vulnerability has been solved with the updated version of QSAN Storage Manager v3.3.3 .
Qsan Storage Manager
4
CVSSv2
CVE-2021-32507
Absolute Path Traversal vulnerability in FileDownload in QSAN Storage Manager allows remote authenticated attackers download arbitrary files via the Url path parameter. The referred vulnerability has been solved with the updated version of QSAN Storage Manager v3.3.3.
Qsan Storage Manager
NA
CVE-2022-2392
The Lana Downloads Manager WordPress plugin prior to 1.8.0 is affected by an arbitrary file download vulnerability that can be exploited by users with "Contributor" permissions or higher.
Lana Lana Downloads Manager
5
CVSSv2
CVE-2008-7063
Ocean12 FAQ Manager Pro stores sensitive data under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for admin/o12faq.mdb.
Ocean12tech Faq Manager Pro
1 EDB exploit
NA
CVE-2023-6383
The Debug Log Manager WordPress plugin prior to 2.3.0 contains a Directory listing vulnerability exists, which allows you to download the debug log without authorization and gain access to sensitive data
Bowo Debug Log Manager
5
CVSSv2
CVE-2009-1821
DMXReady Registration Manager 1.1 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for databases/webblogmanager.mdb.
Dmxready Registration Manager 1.1
1 EDB exploit
5
CVSSv2
CVE-2020-24312
mndpsingh287 WP File Manager v6.4 and lower fails to restrict external access to the fm_backups directory with a .htaccess file. This results in the ability for unauthenticated users to browse and download any site backups, which sometimes include full database backups, that the ...
Webdesi9 File Manager
4.4
CVSSv2
CVE-2021-20722
Untrusted search path vulnerability in the installers of ScanSnap Manager prior to versions V7.0L20 and the Software Download Installer prior to WinSSInst2JP.exe and WinSSInst2iX1500JP.exe allows an malicious user to gain privileges and execute arbitrary code with the privilege o...
Fujitsu Scansnap Manager
5
CVSSv2
CVE-2002-0978
Microsoft File Transfer Manager (FTM) ActiveX control prior to 4.0 allows remote malicious users to upload or download arbitrary files to arbitrary locations via a man-in-the-middle attack with modified TGT and TGN parameters in a call to the "Persist" function.
Microsoft File Transfer Manager
NA
CVE-2022-24632
An issue exists in AudioCodes Device Manager Express up to and including 7.8.20002.47752. It is directory traversal during file download via the BrowseFiles.php view parameter.
Audiocodes Device Manager Express
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »