CVE-2021-25069

CWE-89 — SQL Injection3 documents3 sources

Severity

8.8HIGH

EPSS

0.7%

top 28.76%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Unknown Download Manager W3eden Download Manager

Timeline

PublishedFeb 21

Latest updateFeb 22

Description

The Download Manager WordPress plugin before 3.2.34 does not sanitise and escape the package_ids parameter before using it in a SQL statement, leading to a SQL injection, which can also be exploited to cause a Reflected Cross-Site Scripting issue

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

▶NVDw3eden/download_manager< 3.2.34

▶CVEListV5unknown/download_manager3.2.34 — 3.2.34

🔴Vulnerability Details

GHSA

GHSA-xpm5-2pgw-v7g9: The Download Manager WordPress plugin before 3↗2022-02-22

▶

CVEList

WordPress Download Manager < 3.2.34 - Authenticated SQL Injection to Reflected XSS↗2022-02-21

▶