all InfoSec news
W3 Eden Addresses Authenticated Stored XSS Vulnerability in Download Manager WordPress Plugin
Wordfence www.wordfence.com
On April 25, 2023, our Wordfence Threat Intelligence team identified and began the responsible disclosure process for a stored Cross-Site Scripting (XSS) vulnerability in W3 Eden’s Download Manager plugin, which is actively installed on more than 100,000 WordPress websites, making it one of the most popular download management plugins. The vulnerability enables threat actors with ...
Read More
The post W3 Eden Addresses Authenticated Stored XSS Vulnerability in Download Manager WordPress Plugin appeared first on Wordfence.
addresses april cross-site disclosure download intelligence making management manager plugin popular process research responsible responsible disclosure scripting stored xss team threat threat intelligence vulnerabilities vulnerability websites wordfence wordpress wordpress plugin wordpress security xss