Vulnerabilities > Never5 > Download Monitor > 1.3.2

DATE CVE VULNERABILITY TITLE RISK
2019-08-13 CVE-2015-9296 Cross-site Scripting vulnerability in Never5 Download Monitor
The download-monitor plugin before 1.7.1 for WordPress has XSS related to add_query_arg.
network
never5 CWE-79
4.3
4.3