Vulnerabilities > Never5 > Download Monitor > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-08-13 CVE-2015-9296 Cross-site Scripting vulnerability in Never5 Download Monitor
The download-monitor plugin before 1.7.1 for WordPress has XSS related to add_query_arg.
network
low complexity
never5 CWE-79
6.1
6.1