Wpchill Download Monitor vulnerabilities

CVE-2026-4401 [MEDIUM] CWE-352 CVE-2026-4401: The Download Monitor plugin for WordPress is vulnerable to Cross-Site Request Forgery in the `action The Download Monitor plugin for WordPress is vulnerable to Cross-Site Request Forgery in the `actions_handler()` and `bulk_actions_handler()` methods in `class-dlm-downloads-path.php` in all versions up to, and including, 5.1.10. This is due to missing nonce verification on these functions. This makes it possible for unauthenticated attackers to delet

CVE-2026-3124 [HIGH] CWE-639 CVE-2026-3124: The Download Monitor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all v The Download Monitor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.1.7 via the executePayment() function due to missing validation on a user controlled key. This makes it possible for unauthenticated attackers to complete arbitrary pending orders by exploiting a mismatch between the PayPal

CVE-2024-10399 [MEDIUM] CWE-862 CVE-2024-10399: The Download Monitor plugin for WordPress is vulnerable to unauthorized modification of data due to The Download Monitor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajax_search_users function in all versions up to, and including, 5.0.13. This makes it possible for authenticated attackers, with Subscriber-level access and above, to obtain usernames and emails of site users.

CVE-2024-10092 [MEDIUM] CWE-862 CVE-2024-10092: The Download Monitor plugin for WordPress is vulnerable to unauthorized modification of data due to The Download Monitor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajax_handle_api_key_actions function in all versions up to, and including, 5.0.12. This makes it possible for authenticated attackers, with Subscriber-level access and above, to revoke existing API keys and generate ne

CVE-2022-4972 [HIGH] CWE-862 CVE-2022-4972: The Download Monitor plugin for WordPress is vulnerable to authorization bypass due to a missing cap The Download Monitor plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on several REST-API routes related to reporting in versions up to, and including, 4.7.51. This makes it possible for unauthenticated attackers to view user data and other sensitive information intended for administrators.

CVE-2024-8552 [MEDIUM] CWE-862 CVE-2024-8552: The Download Monitor plugin for WordPress is vulnerable to unauthorized modification of data due to The Download Monitor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the enable_shop() function in all versions up to, and including, 5.0.9. This makes it possible for authenticated attackers, with Subscriber-level access and above, to enable shop functionality.

CVE-2024-3269 [MEDIUM] CWE-285 CVE-2024-3269: The Download Monitor plugin for WordPress is vulnerable to unauthorized access to functionality due The Download Monitor plugin for WordPress is vulnerable to unauthorized access to functionality due to a missing capability check on the dlm_uninstall_plugin function in all versions up to, and including, 4.9.13. This makes it possible for authenticated attackers to uninstall the plugin and delete its data.

CVE-2024-30501 [HIGH] CWE-89 CVE-2024-30501: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPChill Download Monitor.This issue affects Download Monitor: from n/a through 4.9.4.

CVE-2022-45354 [MEDIUM] CWE-200 CVE-2022-45354: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in WPChill Download Monitor Exposure of Sensitive Information to an Unauthorized Actor vulnerability in WPChill Download Monitor.This issue affects Download Monitor: from n/a through 4.7.60.

CVE-2023-34007 [CRITICAL] CWE-434 CVE-2023-34007: Unrestricted Upload of File with Dangerous Type vulnerability in WPChill Download Monitor.This issue Unrestricted Upload of File with Dangerous Type vulnerability in WPChill Download Monitor.This issue affects Download Monitor: from n/a through 4.8.3.

CVE-2023-31219 [MEDIUM] CWE-918 CVE-2023-31219: Server-Side Request Forgery (SSRF) vulnerability in WPChill Download Monitor.This issue affects Down Server-Side Request Forgery (SSRF) vulnerability in WPChill Download Monitor.This issue affects Download Monitor: from n/a through 4.8.1.

CVE-2022-2981 [MEDIUM] CWE-552 CVE-2022-2981: The Download Monitor WordPress plugin before 4.5.98 does not ensure that files to be downloaded are The Download Monitor WordPress plugin before 4.5.98 does not ensure that files to be downloaded are inside the blog folders, and not sensitive, allowing high privilege users such as admin to download the wp-config.php or /etc/passwd even in an hardened environment or multisite setup.

CVE-2022-2222 [MEDIUM] CWE-552 CVE-2022-2222: The Download Monitor WordPress plugin before 4.5.91 does not ensure that files to be downloaded are The Download Monitor WordPress plugin before 4.5.91 does not ensure that files to be downloaded are inside the blog folders, and not sensitive, allowing high privilege users such as admin to download the wp-config.php or /etc/passwd even in an hardened environment or multisite setup.

CVE-2021-23174 [LOW] CWE-79 CVE-2021-23174: Authenticated (admin+) Persistent Cross-Site Scripting (XSS) vulnerability discovered in Download Mo Authenticated (admin+) Persistent Cross-Site Scripting (XSS) vulnerability discovered in Download Monitor WordPress plugin (versions <= 4.4.6) Vulnerable parameters: &post_title, &downloadable_file_version[0].

CVE-2021-31567 [MEDIUM] CWE-200 CVE-2021-31567: Authenticated (admin+) Arbitrary File Download vulnerability discovered in Download Monitor WordPres Authenticated (admin+) Arbitrary File Download vulnerability discovered in Download Monitor WordPress plugin (versions <= 4.4.6). The plugin allows arbitrary files, including sensitive configuration files such as wp-config.php, to be downloaded via the &downloadable_file_urls[0] parameter data. It's also possible to escape from the web server home d

CVE-2021-36920 [MEDIUM] CWE-79 CVE-2021-36920: Authenticated Reflected Cross-Site Scripting (XSS) vulnerability discovered in WordPress plugin Down Authenticated Reflected Cross-Site Scripting (XSS) vulnerability discovered in WordPress plugin Download Monitor (versions <= 4.4.6).

CVE-2021-24786 [HIGH] CWE-89 CVE-2021-24786: The Download Monitor WordPress plugin before 4.4.5 does not properly validate and escape the "orderb The Download Monitor WordPress plugin before 4.4.5 does not properly validate and escape the "orderby" GET parameter before using it in a SQL statement when viewing the logs, leading to an SQL Injection issue