Sandhillsdev Easy_digital_downloads

5 CVEs affecting Sandhillsdev Easy_digital_downloads. Latest disclosed: 2024-05-14. Critical: 1, High: 0.

Top CVEs affecting Sandhillsdev Easy_digital_downloads
CVESeverityScorePublishedSummary
CVE-2023-23489Critical9.82023-01-20The Easy Digital Downloads WordPress Plugin, versions 3.1.0.2 & 3.1.0.3, is affected by an unauthenticated SQL injection vulnerability in the 's' parameter of…
CVE-2023-0380Medium5.42023-02-21The Easy Digital Downloads WordPress plugin before 3.1.0.5 does not validate and escape some of its block options before outputting them back in a page/post wh…
CVE-2024-32100Medium5.32024-05-14Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Easy Digital Downloads.This issue affects Easy Digital Downloads: from n/a through…
CVE-2024-31113Medium4.32024-05-14Cross-Site Request Forgery (CSRF) vulnerability in Easy Digital Downloads.This issue affects Easy Digital Downloads: from n/a through 3.2.11.
CVE-2024-31293Medium4.32024-04-12Cross-Site Request Forgery (CSRF) vulnerability in Easy Digital Downloads.This issue affects Easy Digital Downloads: from n/a through 3.2.6.