Cminds

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-24145 1Cminds 1Cm Download Manager Nov 21, 2024 Jul 7, 2021 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Cross Site Scripting (XSS) vulnerability in the CM Download Manager (aka cm-download-manager) plugin 2.7.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via a crafted deletescreenshot actio...Show more Cross Site Scripting (XSS) vulnerability in the CM Download Manager (aka cm-download-manager) plugin 2.7.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via a crafted deletescreenshot action.Show less
CVE-2020-27344 1Cminds 1Cm Download Manager Nov 21, 2024 Oct 21, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 The cm-download-manager plugin before 2.8.0 for WordPress allows XSS.
CVE-2016-1000132 1Cminds 1Tooltip Glossary May 6, 2026 Oct 10, 2016 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Reflected XSS in wordpress plugin enhanced-tooltipglossary v3.2.8
CVE-2014-9129 1Cminds 1Cm Download Manager May 6, 2026 Dec 5, 2014 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Cross-site request forgery (CSRF) vulnerability in the CreativeMinds CM Downloads Manager plugin before 2.0.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct...Show more Cross-site request forgery (CSRF) vulnerability in the CreativeMinds CM Downloads Manager plugin before 2.0.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks via the addons_title parameter in the CMDM_admin_settings page to wp-admin/admin.php.Show less

Previous 12