A vulnerability classified as critical was found in Download Plugin Plugin up to 1.6.0 on WordPress (WordPress Plugin). This vulnerability affects the function dpwap_plugin_activate of the component AJAX Action Handler. Upgrading to version 1.6.1 eliminates this vulnerability.
Download Plugin Plugin up to 1.6.0 on WordPress AJAX Action dpwap_plugin_activate access control
- Virtual Patching
- November 24, 2021
- 11:07 am
- Virtual Patching
- November 24, 2021
- 11:07 am
Common Vulnerabilityies and Exposures
Contact us to get started
CVE-2023-2851 : AGT TECH CEPPATRON SQL INJECTION
Description Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in AGT Tech Ceppatron allows Command
CVE-2023-2868 : BARRACUDA EMAIL SECURITY GATEWAY UP TO 9.2.0.006 TAR FILE COMMAND INJECTION
Description A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor only) product effecting versions
CVE-2023-1424 : MITSUBISHI ELECTRIC MELSEC IQ-F PACKETS BUFFER OVERFLOW
Description Buffer Copy without Checking Size of Input (‘Classic Buffer Overflow’) vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU