[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"all-banners":3,"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0":4,"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU":11,"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU":17,"vulnerability-12491":24},[],["Island",5],{"key":6,"params":7,"result":9},"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0",{"props":8},"{}",{"head":10},{},["Island",12],{"key":13,"params":14,"result":15},"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU",{"props":8},{"head":16},{},["Island",18],{"key":19,"params":20,"result":22},"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU",{"props":21},"{\"text-color\":\"gray\"}",{"head":23},{},{"id":25,"detectable_with":26,"vuln_details":33,"vuln_id":48,"name":49,"published":50,"updated":34},12491,{"tool":27,"engine":30},{"id":28,"name":29},1,"Network Scanner",{"id":31,"name":32},3,"OpenVAS",{"id":25,"codename":34,"description":34,"severity":35,"risk_description":36,"public_description":37,"public_recommendation":38,"recommendation":34,"references":39,"cvssv3":41,"epss_score":42,"epss_percentile":43,"cve":44,"in_cisa_catalog":46,"date":47,"software_type":34,"vendor":34,"product":34,"ptt_exploit_capabilities":34},null,"high","The plugin does not sanitise and escape the package_ids parameter before using it in a SQL statement, leading to a SQLi, which can also be exploited to cause a reflected cross-site scripting (XSS) issue.","The WordPress plugin Download Manager is prone to an SQL injection (SQLi) vulnerability.","Update to version 3.2.34 or later.",[40],"https://wpscan.com/vulnerability/4ff5e638-1b89-41df-b65a-f821de8934e8",8.8,0.00666,0.71205,[45],"CVE-2021-25069",false,"2022-02-21T00:00:00Z","NETSCAN-OPENVAS-1.3.6.1.4.1.25623.1.0.147729","WordPress Download Manager Plugin \u003C 3.2.34 SQLi Vulnerability","2022-03-01T00:00:00Z"]