重大性スコア(CVS)

Details

Reflected cross-site scripting (XSS) vulnerability discovered by Rafie Muhammad (Yeraisci) in the WordPress Download Manager plugin (version <= 3.2.42).

solution

Update the WordPress Download Manager plugin to the latest version available (at least 3.2.43).

Sources.

Download Manager

This File Management & Digital Store plugin will help you to control file downloads & sell digital products from your WP site.

wordpress.org