CVE-2025-60093 — Cross-Site Request Forgery in Download Manager

CWE-352 — Cross-Site Request Forgery3 documents3 sources

Severity

—N/A

No vector

EPSS

0.0%

top 98.38%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Shahjada Download Manager

Timeline

PublishedSep 26

Description

Cross-Site Request Forgery (CSRF) vulnerability in Shahjada Download Manager download-manager allows Cross Site Request Forgery.This issue affects Download Manager: from n/a through <= 3.3.24.

Affected Packages1 packages

▶CVEListV5shahjada/download_manager3.3.24

🔴Vulnerability Details

GHSA

GHSA-f54p-x8gh-x27v: Cross-Site Request Forgery (CSRF) vulnerability in Shahjada Download Manager allows Cross Site Request Forgery↗2025-09-26

▶

CVEList

WordPress Download Manager Plugin <= 3.3.24 - Cross Site Request Forgery (CSRF) Vulnerability↗2025-09-26

▶