← Back to CVE List
CVE-2024-1231
The CM Download Manager WordPress plugin before 2.9.0 does not have CSRF checks in some places, which could allow attackers to make logged in admins unpublish downloads via a CSRF attack
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt