Filtered by vendor Easydigitaldownloads
Subscriptions
Total
33 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2015-9516 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Invoices | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Invoices extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9517 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Manual Purchases | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Manual Purchases extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9519 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Pdf Stamper | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) PDF Stamper extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9523 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Recommended Products | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Recommended Products extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9525 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Recurring Payments | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Recurring Payments extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9526 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Reviews | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Reviews extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9530 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Upload File | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Upload File extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9532 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Digital Store | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Digital Store theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9533 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Lattice | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Lattice theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9534 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Quota | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Quota theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9536 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Twenty-twelve | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Twenty-Twelve theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2024-5057 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Easy Digital Downloads | 2025-02-07 | 9.3 Critical |
| Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Easy Digital Downloads allows SQL Injection.This issue affects Easy Digital Downloads: from n/a through 3.2.12. | ||||
| CVE-2022-2439 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Easy Digital Downloads | 2025-02-07 | 7.2 High |
| The Easy Digital Downloads – Simple eCommerce for Selling Digital Files plugin for WordPress is vulnerable to deserialization of untrusted input via the 'upload[file]' parameter in versions up to, and including 3.3.3. This makes it possible for authenticated administrative users to call files using a PHAR wrapper, that will deserialize and call arbitrary PHP Objects that can be used to perform a variety of malicious actions granted a POP chain is also present. | ||||