Show filters
13 Total Results
Displaying 11-13 of 13
Sort by:
Attacker Value
Unknown
CVE-2020-5650
Disclosure Date: October 21, 2020 (last updated November 28, 2024)
Cross-site scripting vulnerability in Simple Download Monitor 3.8.8 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors.
0
Attacker Value
Unknown
CVE-2018-5212
Disclosure Date: January 04, 2018 (last updated November 26, 2024)
The Simple Download Monitor plugin before 3.5.4 for WordPress has XSS via the sdm_upload_thumbnail (aka File Thumbnail) parameter in an edit action to wp-admin/post.php.
0
Attacker Value
Unknown
CVE-2018-5213
Disclosure Date: January 04, 2018 (last updated November 26, 2024)
The Simple Download Monitor plugin before 3.5.4 for WordPress has XSS via the sdm_upload (aka Downloadable File) parameter in an edit action to wp-admin/post.php.
0
