CVE-2023-31219 — Server-Side Request Forgery in Download Monitor

Severity

4.9MEDIUMNVD

CNA4.1

EPSS

0.2%

top 63.63%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedNov 13

Description

Server-Side Request Forgery (SSRF) vulnerability in WPChill Download Monitor.This issue affects Download Monitor: from n/a through 4.8.1.

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:NExploitability: 1.2 | Impact: 3.6

▶CVEListV5wpchill/download_monitorn/a — 4.8.1

GHSA

GHSA-49fm-88jx-9fhr: Server-Side Request Forgery (SSRF) vulnerability in WPChill Download Monitor↗2023-11-13

▶

CVEList

WordPress Download Monitor Plugin <= 4.8.1 is vulnerable to Server Side Request Forgery (SSRF)↗2023-11-13

▶