Multiple vulnerabilities discovered in Download Manager <= 3.2.47 [Free/Pro]

in Download Manager Free

Viewing 14 posts - 1 through 14 (of 14 total)
Jun 30, 2022 at 6:32 pm
#174619
Participant
m0ze
OP

Hello,

Since there is no option to create a private topic, I’ll create this one and post the information as private replies.

Discussion started here: https://wordpress.org/support/topic/authenticated-stored-cross-site-scripting-xss-vulnerability-2/

Jul 1, 2022 at 1:05 am
#174623
Participant
m0ze
OP
This reply has been marked as private.
Jul 1, 2022 at 6:21 am
#174629
Keymaster
Shahjada
Staff

Hi,
3.2.47 shouldn’t have the issue anymore, input like https://xxx.xxx/'"><img src=x onerror=alert(origin)> filtering properly. May you please give me an input for which you are facing the issue.

Jul 1, 2022 at 4:46 pm
#174650
Participant
m0ze
OP
This reply has been marked as private.
Jul 1, 2022 at 7:28 pm
#174655
Keymaster
Shahjada
Staff
This reply has been marked as private.
Jul 2, 2022 at 11:42 am
#174682
Participant
m0ze
OP
This reply has been marked as private.
Jul 4, 2022 at 12:38 pm
#174728
Participant
m0ze
OP
This reply has been marked as private.
Jul 4, 2022 at 5:02 pm
#174749
Participant
m0ze
OP
This reply has been marked as private.
Jul 4, 2022 at 5:06 pm
#174750
Participant
m0ze
OP
This reply has been marked as private.
Jul 4, 2022 at 5:32 pm
#174751
Participant
m0ze
OP
This reply has been marked as private.
Jul 4, 2022 at 7:36 pm
#174756
Participant
m0ze
OP
This reply has been marked as private.
Jul 4, 2022 at 7:37 pm
#174757
Participant
m0ze
OP
This reply has been marked as private.
Jul 6, 2022 at 5:23 am
#174811
Keymaster
Shahjada
Staff
This reply has been marked as private.
Jul 6, 2022 at 2:28 pm
#174843
Keymaster
Shahjada
Staff
This reply has been marked as private.
Viewing 14 posts - 1 through 14 (of 14 total)

The topic "Multiple vulnerabilities discovered in Download Manager <= 3.2.47 [Free/Pro]" is closed to new replies.