WordPress Download Manager Vulnerabilities

Wordpress Download Manager vulnerabilities.

JSON RSS CSV 🔔 Create Alert Trigger

26 September 2025

Cross-Site Request Forgery Vulnerability in Shahjada Download Manager by WordPress
CVE-2025-60093
WordPressDownload Manager4.3MEDIUM
Sensitive Data Exposure in Download Manager by Shahjada
CVE-2025-60092
WordPressDownload Manager5.3MEDIUM

19 September 2025

Reflected Cross-Site Scripting Vulnerability in Download Manager Plugin for WordPress
CVE-2025-10146
WordPressDownload Manager6.1MEDIUM

10 July 2025

Stored Cross-Site Scripting Vulnerability in Lana Downloads Manager Plugin for WordPress
CVE-2025-7387
WordPressLana Downloads Manager5.5MEDIUM

19 June 2025

Stored Cross-Site Scripting in Download Manager Plugin for WordPress
CVE-2025-4367
WordPressDownload Manager5.4MEDIUM

15 May 2025

Cross-Site Scripting Vulnerability in Download Manager Plugin for WordPress
CVE-2024-8284
WordPressDownload Manager👾🟡4.8MEDIUM

7 May 2025

Insecure Direct Object Reference in WP SmartPay Plugin for WordPress
CVE-2025-3851
WordPressDownload Manager And P...4.3MEDIUM

19 April 2025

Arbitrary File Deletion in Download Manager Plugin for WordPress
CVE-2025-3404
WordPressDownload Manager8.8HIGH

1 April 2025

Path Traversal Vulnerability in Lana Downloads Manager Plugin for WordPress
CVE-2025-2048
WordPressLana Downloads Manager👾🟡4.1MEDIUM

16 March 2025

Directory Listing Vulnerability in Download Manager Plugin for WordPress
CVE-2024-13126
WordPressDownload Manager👾🟡

13 March 2025

Directory Traversal Vulnerability in Download Manager Plugin for WordPress
CVE-2025-1785
WordPressDownload Manager8.1HIGH

19 February 2025

Stored Cross-Site Scripting Vulnerability in User Private Files Plugin for WordPress
CVE-2024-13799
WordPressUser Private Files – F...6.4MEDIUM

31 December 2024

Access Control Weakness in W3 Eden Download Manager
CVE-2024-56217
WordPressDownload Manager6.3MEDIUM

20 December 2024

Stored Cross-Site Scripting Vulnerability in Download Manager Plugin for WordPress
CVE-2024-10706
WordpressDownload Manager👾🟡

19 December 2024

30 October 2024

Advanced Malware Can Manipulate Systems and Move Laterally in a Network
CVE-2024-8444
WordpressDownload Manager👾🟡

17 October 2024

Path Traversal Vulnerability in CodeFlock FREE DOWNLOAD MANAGER
CVE-2024-49315
WordPressFree Download Manager8.6HIGH

16 October 2024

Freemius SDK Vulnerabilities Affect Hundreds of WordPress Plugins and Themes
CVE-2022-4974
WordpressYasr – Yet Another Sta...6.3MEDIUM

31 July 2024

Stored Cross-Site Scripting Vulnerability in Download Manager Plugin for WordPress
CVE-2024-6208
WordpressDownload Manager5.4MEDIUM

13 June 2024

Unauthorized Access to Password-Protected Files in Download Manager Plugin for WordPress
CVE-2024-2098
WordpressDownload Manager7.5HIGH

12 June 2024

5 June 2024

Stored Cross-Site Scripting Vulnerability in Download Manager Plugin for WordPress
CVE-2024-4001
WordpressDownload Manager5.4MEDIUM

31 May 2024

Stored Cross-Site Scripting Vulnerability in Download Manager Plugin for WordPress
CVE-2024-4160
WordpressDownload Manager5.4MEDIUM