Lucene search
Vlad Vector (Patchstack)PATCHSTACK:8FFA4412B90AC55F9CE4C0CB085CEB6CHistoryAug 02, 2022 - 12:00 a.m.
WordPress Download Manager plugin <= 3.2.48 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities
2022-08-0200:00:00
Vlad Vector (Patchstack)
patchstack.com
13
0.001 Low
EPSS
Percentile
32.0%
Multiple Cross-Site Request Forgery (CSRF) vulnerabilities leading to stats and cache deletion were discovered by Vlad Vector (Patchstack) in the WordPress Download Manager plugin (versions <= 3.2.48).
Solution
Update the WordPress Download Manager plugin to the latest available version (at least 3.2.49).
| CPE | Name | Operator | Version |
|---|---|---|---|
| download manager | le | 3.2.48 |
Related
wpvulndb
wpvulndb
Download Manager < 3.2.49 - Multiple CSRF
2022-08-01 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-08-23 16:15:00
nvd
nvd
CVE-2022-36288
2022-08-23 16:15:11
cvelist
cvelist
cve
cve
CVE-2022-36288
2022-08-23 16:15:11