Adobe » Download Manager : Security Vulnerabilities, CVEs,

CVE-2022-2926

The Download Manager WordPress plugin before 3.2.55 does not validate one of its settings, which could allow high privilege users such as admin to list and read arbitrary files and folders outside of the blog directory
Max CVSS
4.9
EPSS Score
0.08%
Published
2022-09-26
Updated
2022-09-28

CVE-2020-9688

Adobe Download Manager version 2.0.0.518 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.
Max CVSS
9.3
EPSS Score
0.13%
Published
2020-07-17
Updated
2021-07-21

CVE-2019-8071

Adobe Download Manager versions 2.0.0.363 have an insecure file permissions vulnerability. Successful exploitation could lead to privilege escalation.
Max CVSS
9.8
EPSS Score
0.25%
Published
2019-10-17
Updated
2019-10-21

CVE-2010-0189

A certain ActiveX control in NOS Microsystems getPlus Download Manager (aka DLM or Downloader) 1.5.2.35, as used in Adobe Download Manager, improperly validates requests involving web sites that are not in subdomains, which allows remote attackers to force the download and installation of arbitrary programs via a crafted name for a download site.
Max CVSS
9.3
EPSS Score
2.90%
Published
2010-02-23
Updated
2017-09-19

CVE-2006-5856

Stack-based buffer overflow in the Adobe Download Manager before 2.2 allows remote attackers to execute arbitrary code via a long section name in the dm.ini file, which is populated via an AOM file.
Max CVSS
6.8
EPSS Score
81.61%
Published
2006-12-06
Updated
2018-10-17
5 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close