Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Simple Download Monitor Multiple Vulnerabilities - CVE-2021-24695 - Vulnerability Database
WP Plugin Simple Download Monitor

WordPress Plugin Simple Download Monitor Multiple Vulnerabilities - CVE-2021-24695

Medium
Reference: CVE-2021-24695
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-24695
Title: WordPress Plugin Simple Download Monitor Multiple Vulnerabilities
Overview:

WordPress Plugin Simple Download Monitor is prone to multiple vulnerabilities including security bypass and information disclosure vulnerabilities. An attacker may leverage these issues to perform otherwise restricted actions and subsequently remove thumbnails from downloads or reset the log entries or to obtain sensitive information that may help in launching further attacks. WordPress Plugin Simple Download Monitor version 3.9.5.1 is vulnerable prior versions may also be affected.