Filtered by vendor Easydigitaldownloads
Subscriptions
Total
34 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-2302 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Easy Digital Downloads | 2026-04-08 | 5.3 Medium |
| The Easy Digital Downloads – Sell Digital Files & Subscriptions (eCommerce Store + Payments Made Easy) plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.2.9. This makes it possible for unauthenticated attackers to download the debug log via Directory Listing. This file may include PII. | ||||
| CVE-2022-2439 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Easy Digital Downloads | 2026-04-08 | 7.2 High |
| The Easy Digital Downloads – Simple eCommerce for Selling Digital Files plugin for WordPress is vulnerable to deserialization of untrusted input via the 'upload[file]' parameter in versions up to, and including 3.3.3. This makes it possible for authenticated administrative users to call files using a PHAR wrapper, that will deserialize and call arbitrary PHP Objects that can be used to perform a variety of malicious actions granted a POP chain is also present. | ||||
| CVE-2015-9518 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Pdf Invoices | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) PDF Invoices extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9521 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Pushover Notifications | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Pushover Notifications extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9522 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Qr Code | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) QR Code extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9527 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Simple Shipping | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Simple Shipping extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9529 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Stripe | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Stripe extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9536 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Twenty-twelve | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Twenty-Twelve theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9506 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Amazon S3 | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Amazon S3 extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9511 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Conditional Success Redirects | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Conditional Success Redirects extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9512 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Csv Manager | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) CSV Manager extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9513 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Favorites | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Favorites extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9516 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Invoices | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Invoices extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9517 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Manual Purchases | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Manual Purchases extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9519 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Pdf Stamper | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) PDF Stamper extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9523 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Recommended Products | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Recommended Products extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9525 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Recurring Payments | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Recurring Payments extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9507 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Attach Accounts To Orders | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Attach Accounts to Orders extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9532 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Digital Store | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Digital Store theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||
| CVE-2015-9533 | 2 Awesomemotive, Easydigitaldownloads | 2 Easy Digital Downloads, Lattice | 2025-02-07 | 6.1 Medium |
| The Easy Digital Downloads (EDD) Lattice theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused. | ||||