Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
12028.5%HIGH

Related CVEs

2
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2024-13618The aoa-downloadable WordPress plugin through 0.1.0 lacks authorization and authentication for requests to its download.php endpoint, allowing unauthenticated visitors to make requests to arbitrary URLs.HIGH7.221.5%Mar 25, 2025
CVE-2024-13617The aoa-downloadable WordPress plugin through 0.1.0 doesn't validate a parameter in its download function, allowing unauthenticated attackers to download arbitrary files from the serverHIGH8.635.4%Mar 25, 2025