Shahjada Download Manager vulnerabilities

CVE-2026-39615 [MEDIUM] CWE-79 CVE-2026-39615: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Shahjada Download Manager download-manager allows Stored XSS.This issue affects Download Manager: from n/a through <= 3.3.53.

CVE-2026-39676 [MEDIUM] CWE-862 CVE-2026-39676: Missing Authorization vulnerability in Shahjada Download Manager download-manager allows Exploiting Missing Authorization vulnerability in Shahjada Download Manager download-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Download Manager: from n/a through <= 3.3.52.

CVE-2025-63070 [MEDIUM] CWE-497 CVE-2025-63070: Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Shahjada Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Shahjada Download Manager download-manager allows Retrieve Embedded Sensitive Data.This issue affects Download Manager: from n/a through <= 3.3.32.

CVE-2025-60093 CWE-352 CVE-2025-60093: Cross-Site Request Forgery (CSRF) vulnerability in Shahjada Download Manager download-manager allows Cross-Site Request Forgery (CSRF) vulnerability in Shahjada Download Manager download-manager allows Cross Site Request Forgery.This issue affects Download Manager: from n/a through <= 3.3.24.

CVE-2025-60092 CWE-497 CVE-2025-60092: Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Shahjada Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Shahjada Download Manager download-manager allows Retrieve Embedded Sensitive Data.This issue affects Download Manager: from n/a through <= 3.3.25.

CVE-2024-56217 [MEDIUM] CWE-862 CVE-2024-56217: Missing Authorization vulnerability in Shahjada Download Manager download-manager allows Exploiting Missing Authorization vulnerability in Shahjada Download Manager download-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Download Manager: from n/a through <= 3.3.03.