Unrated severityNVD Advisory· Published Mar 25, 2024· Updated Aug 28, 2024
CM Download and File Manager < 2.9.1 - Download Edit via CSRF
CVE-2024-1962
Description
The CM Download Manager WordPress plugin before 2.9.1 does not have CSRF checks in some places, which could allow attackers to make logged in admins edit downloads via a CSRF attack
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <2.9.1
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/469486d4-7677-4d66-83c0-a6b9ac7c503b/mitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.