Cross-Site Request Forgery Vulnerability in WP-DownloadManager Plugin for WordPress
CVE-2013-2697

Currently unrated

Key Information:

Vendor: Wordpress
Status: WP-downloadmanager
Vendor: CVE Published:; 19 April 2013

What is CVE-2013-2697?

A Cross-Site Request Forgery (CSRF) vulnerability exists in the WP-DownloadManager plugin for WordPress, specifically in versions prior to 1.61. This vulnerability allows remote attackers to exploit user authentication and potentially send requests that include malicious XSS sequences. Such attacks could lead to unauthorized actions being performed on behalf of legitimate users within the affected WordPress environments, compromising the security and integrity of the site.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/52863

third-party-advisoryx_refsource_SECUNIA

http://wordpress.org/extend/plugins/wp-downloadmanager/ch...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 19, 2013

JSON

Wordpress

What is CVE-2013-2697?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.