CVE-2025-60092Exposure of Sensitive System Information to an Unauthorized Control Sphere in Download Manager

CWE-497Exposure of Sensitive System Information to an Unauthorized Control Sphere3 documents3 sources
Severity
N/A
No vector
EPSS
0.0%
top 92.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Shahjada Download Manager
Timeline
PublishedSep 26

Description

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Shahjada Download Manager download-manager allows Retrieve Embedded Sensitive Data.This issue affects Download Manager: from n/a through <= 3.3.25.

Affected Packages1 packages

CVEListV5shahjada/download_manager3.3.25

🔴Vulnerability Details

2
GHSA
GHSA-pxww-59ph-c5c3: Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Shahjada Download Manager allows Retrieve Embedded Sensiti2025-09-26
CVEList
WordPress Download Manager Plugin <= 3.3.25 - Sensitive Data Exposure Vulnerability2025-09-26
CVE-2025-60092 — Download Manager vulnerability | cvebase