W3Eden Download Manager vulnerabilities
48 known vulnerabilities affecting w3eden/download_manager.
Total CVEs
48
CISA KEV
0
Public exploits
8
Exploited in wild
2
Severity breakdown
HIGH16MEDIUM32
Vulnerabilities
Page 1 of 3
CVE-2024-11740P1HIGHCVSS 7.3ExploitedPoCfixed in 3.3.042024-12-19
CVE-2024-11740 [HIGH] CWE-94 CVE-2024-11740: The The Download Manager plugin for WordPress is vulnerable to arbitrary shortcode execution in all
The The Download Manager plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.3.03. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcode
nvd
CVE-2021-24969P2MEDIUMCVSS 5.4Exploitedfixed in 3.2.222021-12-27
CVE-2021-24969 [MEDIUM] CWE-79 CVE-2021-24969: The WordPress Download Manager WordPress plugin before 3.2.22 does not sanitise and escape Template
The WordPress Download Manager WordPress plugin before 3.2.22 does not sanitise and escape Template data before outputting it in various pages (such as admin dashboard and frontend). Due to the lack of authorisation and CSRF checks in the wpdm_save_template AJAX action, any authenticated users such as subscriber is able to call it and perform Cross-Si
nvd
CVE-2014-9260P2HIGHCVSS 8.8PoCfixed in 2.7.32017-08-07
CVE-2014-9260 [HIGH] CVE-2014-9260: The basic_settings function in the download manager plugin for WordPress before 2.7.3 allows remote
The basic_settings function in the download manager plugin for WordPress before 2.7.3 allows remote authenticated users to update every WordPress option.
nvd
CVE-2023-6421P3HIGHCVSS 7.5PoCfixed in 3.2.832024-01-01
CVE-2023-6421 [HIGH] CWE-522 CVE-2023-6421: The Download Manager WordPress plugin before 3.2.83 does not protect file download's passwords, leak
The Download Manager WordPress plugin before 3.2.83 does not protect file download's passwords, leaking it upon receiving an invalid one.
nvd
CVE-2019-15889P3MEDIUMCVSS 6.1PoCfixed in 2.9.942019-09-03
CVE-2019-15889 [MEDIUM] CWE-79 CVE-2019-15889: The download-manager plugin before 2.9.94 for WordPress has XSS via the category shortcode feature,
The download-manager plugin before 2.9.94 for WordPress has XSS via the category shortcode feature, as demonstrated by the orderby or search[publish_date] parameter.
nvd
CVE-2022-2431P3HIGHCVSS 8.8≤ 3.2.502022-09-06
CVE-2022-2431 [HIGH] CWE-73 CVE-2022-2431: The Download Manager plugin for WordPress is vulnerable to arbitrary file deletion in versions up to
The Download Manager plugin for WordPress is vulnerable to arbitrary file deletion in versions up to, and including 3.2.50. This is due to insufficient file type and path validation on the deleteFiles() function found in the ~/Admin/Menu/Packages.php file that triggers upon download post deletion. This makes it possible for contributor level users and ab
nvd
CVE-2021-34639P3HIGHCVSS 8.8≤ 3.1.242021-08-05
CVE-2021-34639 [HIGH] CWE-646 CVE-2021-34639: Authenticated File Upload in WordPress Download Manager <= 3.1.24 allows authenticated (Author+) use
Authenticated File Upload in WordPress Download Manager <= 3.1.24 allows authenticated (Author+) users to upload files with a double extension, e.g. "payload.php.png" which is executable in some configurations. This issue affects: WordPress Download Manager version 3.1.24 and prior versions.
nvd
CVE-2022-2168P3MEDIUMCVSS 6.1PoCfixed in 3.2.442022-07-17
CVE-2022-2168 [MEDIUM] CWE-79 CVE-2022-2168: The Download Manager WordPress plugin before 3.2.44 does not escape a generated URL before outputtin
The Download Manager WordPress plugin before 3.2.44 does not escape a generated URL before outputting it back in an attribute of the history dashboard, leading to Reflected Cross-Site Scripting
nvd
CVE-2022-45836P3MEDIUMCVSS 6.1PoCfixed in 3.2.602023-04-18
CVE-2022-45836 [MEDIUM] CWE-79 CVE-2022-45836: Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in W3 Eden, Inc. Download Manager plugin
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in W3 Eden, Inc. Download Manager plugin <= 3.2.59 versions.
nvd
CVE-2022-2436P3HIGHCVSS 8.8fixed in 3.2.502022-09-06
CVE-2022-2436 [HIGH] CWE-502 CVE-2022-2436: The Download Manager plugin for WordPress is vulnerable to deserialization of untrusted input via th
The Download Manager plugin for WordPress is vulnerable to deserialization of untrusted input via the 'file[package_dir]' parameter in versions up to, and including 3.2.49. This makes it possible for authenticated attackers with contributor privileges and above to call files using a PHAR wrapper that will deserialize the data and call arbitrary PHP Obje
nvd
CVE-2024-13126P4MEDIUMCVSS 4.6PoCfixed in 3.3.072025-03-16
CVE-2024-13126 [MEDIUM] CWE-552 CVE-2024-13126: The Download Manager WordPress plugin before 3.3.07 doesn't prevent directory listing on web servers
The Download Manager WordPress plugin before 3.3.07 doesn't prevent directory listing on web servers that don't use htaccess, allowing unauthorized access of files.
nvd
CVE-2024-2098P3HIGHCVSS 7.5fixed in 3.2.902024-06-13
CVE-2024-2098 [HIGH] CWE-289 CVE-2024-2098: The Download Manager plugin for WordPress is vulnerable to unauthorized access of data due to an imp
The Download Manager plugin for WordPress is vulnerable to unauthorized access of data due to an improper authorization check on the 'protectMediaLibrary' function in all versions up to, and including, 3.2.89. This makes it possible for unauthenticated attackers to download password-protected files.
nvd
CVE-2013-7319P4MEDIUMCVSS 4.3PoC≤ 2.5.8v2.5.0+7 more2014-02-06
CVE-2013-7319 [MEDIUM] CWE-79 CVE-2013-7319: Cross-site scripting (XSS) vulnerability in the Download Manager plugin before 2.5.9 for WordPress a
Cross-site scripting (XSS) vulnerability in the Download Manager plugin before 2.5.9 for WordPress allows remote attackers to inject arbitrary web script or HTML via the title field.
nvd
CVE-2021-25087P3HIGHCVSS 7.5fixed in 3.2.352022-03-07
CVE-2021-25087 [HIGH] CWE-862 CVE-2021-25087: The Download Manager WordPress plugin before 3.2.35 does not have any authorisation checks in some o
The Download Manager WordPress plugin before 3.2.35 does not have any authorisation checks in some of the REST API endpoints, allowing unauthenticated attackers to call them, which could lead to sensitive information disclosure, such as posts passwords (fixed in 3.2.24) and files Master Keys (fixed in 3.2.25).
nvd
CVE-2023-1809P3HIGHCVSS 7.5≥ 6.0.0, < 6.3.02023-05-02
CVE-2023-1809 [HIGH] CWE-276 CVE-2023-1809: The Download Manager WordPress plugin before 6.3.0 leaks master key information without the need for
The Download Manager WordPress plugin before 6.3.0 leaks master key information without the need for a password, allowing attackers to download arbitrary password-protected package files.
nvd
CVE-2021-25069P3HIGHCVSS 8.8fixed in 3.2.342022-02-21
CVE-2021-25069 [HIGH] CWE-89 CVE-2021-25069: The Download Manager WordPress plugin before 3.2.34 does not sanitise and escape the package_ids par
The Download Manager WordPress plugin before 3.2.34 does not sanitise and escape the package_ids parameter before using it in a SQL statement, leading to a SQL injection, which can also be exploited to cause a Reflected Cross-Site Scripting issue
nvd
CVE-2025-1785P3HIGHCVSS 8.1fixed in 3.3.092025-03-13
CVE-2025-1785 [HIGH] CWE-22 CVE-2025-1785: The Download Manager plugin for WordPress is vulnerable to Directory Traversal in all versions up to
The Download Manager plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.3.08 via the 'wpdm_newfile' action. This makes it possible for authenticated attackers, with Author-level access and above, to overwrite select file types outside of the originally intended directory, which may cause a denial of service.
nvd
CVE-2022-0828P3HIGHCVSS 7.5fixed in 3.2.342022-04-11
CVE-2022-0828 [HIGH] CWE-338 CVE-2022-0828: The Download Manager WordPress plugin before 3.2.34 uses the uniqid php function to generate the mas
The Download Manager WordPress plugin before 3.2.34 uses the uniqid php function to generate the master key for a download, allowing an attacker to brute force the key with reasonable resources giving direct download access regardless of role based restrictions or password protections set for the download.
nvd
CVE-2024-32131P3HIGHCVSS 7.5fixed in 3.2.832024-05-17
CVE-2024-32131 [HIGH] CWE-200 CVE-2024-32131: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in W3 Eden Inc. Download Ma
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in W3 Eden Inc. Download Manager allows Functionality Bypass.This issue affects Download Manager: from n/a through 3.2.82.
nvd
CVE-2022-2362P3HIGHCVSS 7.5fixed in 3.2.502022-08-22
CVE-2022-2362 [HIGH] CWE-79 CVE-2022-2362: The Download Manager WordPress plugin before 3.2.50 prioritizes getting a visitor's IP from certain
The Download Manager WordPress plugin before 3.2.50 prioritizes getting a visitor's IP from certain HTTP headers over PHP's REMOTE_ADDR, which makes it possible to bypass IP-based download blocking restrictions.
nvd
1 / 3Next →