Cross-site request forgery (CSRF) vulnerability in the WP-DownloadManager plugin prior to 1.61 for WordPress allows remote malicious users to hijack the authentication of arbitrary users for requests that insert XSS sequences.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
lester_chan wp-downloadmanager 1.50 |
||
lester_chan wp-downloadmanager 1.31 |
||
lester_chan wp-downloadmanager 1.30 |
||
lester_chan wp-downloadmanager 1.00 |
||
lester_chan wp-downloadmanager |
||
lester_chan wp-downloadmanager 1.40 |