RSS   Vulnerabilities for 'Directdownload'   RSS

2019-09-26
 
CVE-2015-9442

CWE-352
 

 
The avenirsoft-directdownload plugin 1.0 for WordPress has CSRF with resultant XSS via wp-admin/admin.php?page=avenir_plugin.

 


Copyright 2024, cxsecurity.com

 

Back to Top