Report
The m1.DownloadList plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 0.23. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive user or configuration data.
Score:6.5
Severity:Medium
Version: 0.23
The plugin vendor has not patched this vulnerability at the moment.
