Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Download_monitor
(Wpchill)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 12 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-01-03 | CVE-2021-24786 | The Download Monitor WordPress plugin before 4.4.5 does not properly validate and escape the "orderby" GET parameter before using it in a SQL statement when viewing the logs, leading to an SQL Injection issue | Download_monitor | 7.2 | ||
| 2024-03-29 | CVE-2024-30501 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPChill Download Monitor.This issue affects Download Monitor: from n/a through 4.9.4. | Download_monitor | 7.2 |