Cross-Site Scripting Vulnerability in WordPress Download Manager
CVE-2017-2216
6.1MEDIUM
What is CVE-2017-2216?
A cross-site scripting vulnerability exists in WordPress Download Manager versions before 2.9.50. This issue allows remote attackers to inject arbitrary web scripts or HTML through various unspecified vectors, potentially compromising site security and user data. Users of affected versions are advised to upgrade to mitigate risks associated with unauthorized script execution.
Affected Version(s)
WordPress Download Manager prior to version 2.9.50