Vulnerabilities > Mikejolley > Download Monitor > 1.0.5
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-08-09 | CVE-2013-5098 | Cross-Site Scripting vulnerability in Mikejolley Download Monitor Cross-site scripting (XSS) vulnerability in admin/admin.php in the Download Monitor plugin before 3.3.6.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the sort parameter, a different vulnerability than CVE-2013-3262. | 4.3 |
2013-08-09 | CVE-2013-3262 | Cross-Site Scripting vulnerability in Mikejolley Download Monitor Cross-site scripting (XSS) vulnerability in admin/admin.php in the Download Monitor plugin before 3.3.6.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the p parameter. | 4.3 |