🔍 What is Download Monitor?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2022-4972

HIGH CVSS 7.5 Oct 16, 2024

The Download Monitor WordPress plugin up to version 4.7.51 has an authorization bypass vulnerability in REST-API reporting routes. Unauthenticated attackers can access sensitive information intended f...

CVE-2021-24786

HIGH CVSS 7.2 Jan 3, 2022

This SQL injection vulnerability in the Download Monitor WordPress plugin allows attackers to manipulate database queries by injecting malicious SQL code through the 'orderby' parameter. It affects Wo...

CVE-2024-8552

MEDIUM CVSS 4.3 Sep 26, 2024

The Download Monitor WordPress plugin has an authorization vulnerability that allows authenticated users with Subscriber-level access or higher to enable shop functionality without proper permissions....