CM Download Manager – Organize, Protect & Share Files in WordPress

Vulnerabilities 12Slug cm-download-managerLatest version 3.1.0WordPress.org →

Minimum safe version

3.0.0

Update to 3.0.0 or later to address 12 fixable vulnerabilities

Latest available3.1.0 ✓

High 8.6

2025-04-01< 3.0.0

CVE-2025-30910

CVE EUVD Wordfence

High 7.1

2025-03-03< 2.9.3

CVE-2025-24758

CVE Patchstack

Medium 6.8

2024-03-25< 2.9.0

CVE-2024-1231

CVE Wordfence Patchstack WPScan

Medium 4.8

2024-03-25< 2.9.0

CVE-2024-1232

CVE Wordfence Patchstack WPScan

High 8.8

2024-03-25< 2.9.1

CVE-2024-1962

CVE Wordfence Patchstack WPScan

High 7.2

2022-09-26< 2.8.6

CVE-2022-3076

CVE Wordfence WPScan

N/A

2020-10-22< 2.8.0

WordPress CM Download Manager plugin <= 2.7.0 - Authenticated Cross-Site Scripting (XSS) vulnerability

Patchstack

N/A

2014-12-05< 2.0.4

CVE-2014-8877

CVE Patchstack Wordfence WPScan

N/A

2014-12-05< 2.0.7

CVE-2014-9129

CVE Wordfence Patchstack WPScan

Medium 6.1

2020-10-22< 2.8.0

CM Download Manager <= 2.7.0 - Authenticated Stored Cross-Site Scripting

Wordfence CVE WPScan

High 8.1

2021-07-07< 2.8.0

CVE-2020-24146

CVE Wordfence WPScan

Medium 6.1

2021-07-07< 2.8.0

CVE-2020-24145

CVE Wordfence WPScan