Medium severity6.1NVD Advisory· Published Jul 7, 2017· Updated May 13, 2026

CVE-2017-2217

Description

Open redirect vulnerability in WordPress Download Manager prior to version 2.9.51 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

Affected products

W3 Eden Inc./Wordpress Download Managerv5
Range: prior to version 2.9.51

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

plugins.trac.wordpress.org/changeset/1650075/nvdIssue TrackingPatchVendor Advisory
wordpress.org/plugins/download-manager/nvdPatchVendor Advisory
jvn.jp/en/jp/JVN79738260/index.htmlnvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.397
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000