VYPR

Cf7 File Download

by WordPress

CVEs (2)

  • CVE-2025-7717HigJul 21, 2025
    risk 0.49cvss 7.5epss 0.00

    Missing Authorization vulnerability in Drupal File Download allows Forceful Browsing.This issue affects File Download: from 0.0.0 before 1.9.0, from 2.0.0 before 2.0.1.

  • CVE-2024-33697MedApr 26, 2024
    risk 0.38cvss 5.9epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rimes Gold CF7 File Download – File Download for CF7 allows Stored XSS.This issue affects CF7 File Download – File Download for CF7: from n/a through 2.0.