Vulnerabilities > Mikejolley
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-09-04 | CVE-2012-4768 | Cross-Site Scripting vulnerability in Mikejolley Download Monitor 3.3.5.7 Cross-site scripting (XSS) vulnerability in the Download Monitor plugin before 3.3.5.9 for WordPress allows remote attackers to inject arbitrary web script or HTML via the dlsearch parameter to the default URI. | 4.3 |
2013-08-09 | CVE-2013-5098 | Cross-Site Scripting vulnerability in Mikejolley Download Monitor Cross-site scripting (XSS) vulnerability in admin/admin.php in the Download Monitor plugin before 3.3.6.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the sort parameter, a different vulnerability than CVE-2013-3262. | 4.3 |
2013-08-09 | CVE-2013-3262 | Cross-Site Scripting vulnerability in Mikejolley Download Monitor Cross-site scripting (XSS) vulnerability in admin/admin.php in the Download Monitor plugin before 3.3.6.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the p parameter. | 4.3 |