CVE-2024-9829

MEDIUM

Download Plugin < 2.2.0 - Authenticated Unauthorized Data Access via Missing Capability Checks

Title source: llm
STIX 2.1

Description

The Download Plugin plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability checks on the 'dpwap_handle_download_user' and 'dpwap_handle_download_comment' functions in all versions up to, and including, 2.2.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to download any comment, and download metadata for any user including user PII and sensitive information including username, email, hashed passwords and application passwords, session token information and more depending on set up and additional plugins installed.

Scores

CVSS v3 6.5
EPSS 0.0041
EPSS Percentile 32.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-862
Status published
Products (2)
metagauss/Download Plugin < 2.2.0
metagauss/download_plugin < 2.2.1
Published Oct 23, 2024
Tracked Since Feb 18, 2026