Cminds - Cm Download Manager CVE

Filtered by vendor Cminds Subscribe

Filtered by product Cm Download Manager

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-24145	1 Cminds	1 Cm Download Manager	2021-07-09	4.3 MEDIUM	6.1 MEDIUM
Cross Site Scripting (XSS) vulnerability in the CM Download Manager (aka cm-download-manager) plugin 2.7.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via a crafted deletescreenshot action.
CVE-2020-27344	1 Cminds	1 Cm Download Manager	2020-10-23	4.3 MEDIUM	6.1 MEDIUM
The cm-download-manager plugin before 2.8.0 for WordPress allows XSS.

Vulnerabilities (CVE)