Filtered by vendor Easydigitaldownloads
Subscriptions
Total
33 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2015-9507 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Attach Accounts To Orders | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Attach Accounts to Orders extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9508 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Commissions | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Commissions extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9509 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Content Restriction | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Content Restriction extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9511 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Conditional Success Redirects | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Conditional Success Redirects extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9513 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Favorites | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Favorites extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9515 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Htaccess Editor | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) htaccess Editor extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9522 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Qr Code | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) QR Code extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9524 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Recount Earnings | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Recount Earnings extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9529 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Stripe | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Stripe extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9530 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Upload File | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Upload File extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9520 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Per Product Emails | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Per Product Emails extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9528 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Software Licensing | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Software Licensing extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2022-2439 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Easy Digital Downloads | 2025-02-07 | 7.2 High |
| The Easy Digital Downloads – Simple eCommerce for Selling Digital Files plugin for WordPress is vulnerable to deserialization of untrusted input via the 'upload[file]' parameter in versions up to, and including 3.3.3. This makes it possible for authenticated administrative users to call files using a PHAR wrapper, that will deserialize and call arbitrary PHP Objects that can be used to perform a variety of malicious actions granted a POP chain is also present. | ||||