Vulnerabilities > Adobe > Download Manager
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-09-26 | CVE-2022-2926 | Path Traversal vulnerability in Adobe Download Manager The Download Manager WordPress plugin before 3.2.55 does not validate one of its settings, which could allow high privilege users such as admin to list and read arbitrary files and folders outside of the blog directory | 4.9 |
2020-07-17 | CVE-2020-9688 | Injection vulnerability in Adobe Download Manager 2.0.0.518 Adobe Download Manager version 2.0.0.518 have a command injection vulnerability. | 9.3 |
2019-10-17 | CVE-2019-8071 | Incorrect Permission Assignment for Critical Resource vulnerability in Adobe Download Manager 2.0.0.363 Adobe Download Manager versions 2.0.0.363 have an insecure file permissions vulnerability. | 7.5 |
2010-02-23 | CVE-2010-0189 | Improper Input Validation vulnerability in multiple products A certain ActiveX control in NOS Microsystems getPlus Download Manager (aka DLM or Downloader) 1.5.2.35, as used in Adobe Download Manager, improperly validates requests involving web sites that are not in subdomains, which allows remote attackers to force the download and installation of arbitrary programs via a crafted name for a download site. | 9.3 |
2008-11-05 | CVE-2008-4817 | Improper Input Validation vulnerability in Adobe Acrobat and Acrobat Reader The Download Manager in Adobe Acrobat Professional and Reader 8.1.2 and earlier allows remote attackers to execute arbitrary code via a crafted PDF document that calls an AcroJS function with a long string argument, triggering heap corruption. | 9.3 |
2008-11-05 | CVE-2008-4816 | Unspecified vulnerability in Adobe Acrobat and Acrobat Reader Unspecified vulnerability in the Download Manager in Adobe Reader 8.1.2 and earlier on Windows allows remote attackers to change Internet Security options on a client machine via unknown vectors. | 4.3 |
2006-12-06 | CVE-2006-5856 | Buffer Overflow vulnerability in Adobe Download Manager AOM Stack-based buffer overflow in the Adobe Download Manager before 2.2 allows remote attackers to execute arbitrary code via a long section name in the dm.ini file, which is populated via an AOM file. network adobe | 6.8 |