Mdc Youtube Downloader Project Mdc Youtube Downloader vulnerabilities
3 known vulnerabilities affecting mdc_youtube_downloader_project/mdc_youtube_downloader.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2015-5469P2HIGHCVSS 7.5PoCv2.1.02017-05-23
CVE-2015-5469 [HIGH] CWE-22 CVE-2015-5469: Absolute path traversal vulnerability in the MDC YouTube Downloader plugin 2.1.0 for WordPress allow
Absolute path traversal vulnerability in the MDC YouTube Downloader plugin 2.1.0 for WordPress allows remote attackers to read arbitrary files via a full pathname in the file parameter to includes/download.php.
nvd
CVE-2025-23639P4MEDIUMCVSS 6.1≤ 3.0.02025-01-16
CVE-2025-23639 [MEDIUM] CWE-352 CVE-2025-23639: Cross-Site Request Forgery (CSRF) vulnerability in Nazmul Ahsan MDC YouTube Downloader mdc-youtube-d
Cross-Site Request Forgery (CSRF) vulnerability in Nazmul Ahsan MDC YouTube Downloader mdc-youtube-downloader allows Stored XSS.This issue affects MDC YouTube Downloader: from n/a through <= 3.0.0.
nvd
CVE-2024-51875P4MEDIUMCVSS 5.4≤ 3.0.02024-11-19
CVE-2024-51875 [MEDIUM] CWE-79 CVE-2024-51875: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nazmul Ahsan MDC YouTube Downloader mdc-youtube-downloader allows DOM-Based XSS.This issue affects MDC YouTube Downloader: from n/a through <= 3.0.0.
nvd