CVE-2022-2926
- EPSS 2.18%
- Veröffentlicht 26.09.2022 13:15:10
- Zuletzt bearbeitet 21.05.2025 17:15:53
The Download Manager WordPress plugin before 3.2.55 does not validate one of its settings, which could allow high privilege users such as admin to list and read arbitrary files and folders outside of the blog directory
CVE-2020-9688
- EPSS 4.51%
- Veröffentlicht 17.07.2020 00:15:12
- Zuletzt bearbeitet 21.11.2024 05:41:06
Adobe Download Manager version 2.0.0.518 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.
CVE-2019-8071
- EPSS 0.65%
- Veröffentlicht 17.10.2019 19:15:11
- Zuletzt bearbeitet 21.11.2024 04:49:13
Adobe Download Manager versions 2.0.0.363 have an insecure file permissions vulnerability. Successful exploitation could lead to privilege escalation.
CVE-2010-0189
- EPSS 2.47%
- Veröffentlicht 23.02.2010 20:30:00
- Zuletzt bearbeitet 11.04.2025 00:51:21
A certain ActiveX control in NOS Microsystems getPlus Download Manager (aka DLM or Downloader) 1.5.2.35, as used in Adobe Download Manager, improperly validates requests involving web sites that are not in subdomains, which allows remote attackers to...
CVE-2006-5856
- EPSS 56.66%
- Veröffentlicht 06.12.2006 19:28:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
Stack-based buffer overflow in the Adobe Download Manager before 2.2 allows remote attackers to execute arbitrary code via a long section name in the dm.ini file, which is populated via an AOM file.