Codename065

#20656of 53,608
12.2Total CVSS
Vulnerabilities · 2
Medium
2
PT-2017-15265
6.1
2017-07-07
WordPress · Wordpress Download Manager · CVE-2017-2216
**Name of the Vulnerable Software and Affected Versions** WordPress Download Manager versions prior to 2.9.50 **Description** A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML. **Recommendations** For WordPress Download Manager versions prior to 2.9.50, update to version 2.9.50 or later to resolve the issue.
PT-2017-15266
6.1
2017-07-07
WordPress · Wordpress Download Manager · CVE-2017-2217
**Name of the Vulnerable Software and Affected Versions** WordPress Download Manager versions prior to 2.9.51 **Description** The issue allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks. **Recommendations** For WordPress Download Manager versions prior to 2.9.51, update to version 2.9.51 or later to resolve the issue.