CVE-2018-5213

Name of the Vulnerable Software and Affected Versions Simple Download Monitor plugin versions prior to 3.5.4

Description The issue allows for XSS via the sdm upload parameter in an edit action to the "wp-admin/post.php" endpoint. This affects the WordPress plugin, potentially allowing malicious actions.

Recommendations For versions prior to 3.5.4, update to version 3.5.4 or later to resolve the issue.