CVE-2025-3404Path Traversal in Download Manager

CWE-22Path Traversal4 documents4 sources
Severity
8.8HIGHNVD
EPSS
2.0%
top 16.21%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Codename065 Download Manager
Timeline
PublishedApr 19

Description

The Download Manager plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the savePackage function in all versions up to, and including, 3.3.12. This makes it possible for authenticated attackers, with Author-level access and above, to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php).

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages1 packages

🔴Vulnerability Details

2
CVEList
Download Manager <= 3.3.12 - Authenticated (Author+) Arbitrary File Deletion2025-04-19
GHSA
GHSA-5x3p-9jcx-4cc3: The Download Manager plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the savePackage functio2025-04-19
CVE-2025-3404 — Path Traversal in Download Manager | cvebase