Simple Download Counter

Vulnerabilities 5Slug simple-download-counterLatest version 2.3.2WordPress.org →

Minimum safe version

2.3.1

Update to 2.3.1 or later to address 5 fixable vulnerabilities

Latest available2.3.2 ✓

N/A

2026-03-25< 2.3.1

Simple Download Counter <= 2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'text' Shortcode Attribute

Medium 4.9

2025-12-10< 2.2.3

CVE-2025-13677

Medium 5.4

2025-04-22< 2.2.1

CVE-2025-46240

Medium 6.5

2025-03-03< 2.1

WordPress Simple Download Counter Plugin <= 2.0 is vulnerable to Arbitrary File Download

Medium 5.4

2023-09-11< 1.6.1

WordPress Simple Download Counter Plugin <= 1.6 is vulnerable to Cross Site Scripting (XSS)