cleantalk
Vulnerabilities and Security Researches

CM Download Manager – Document and File Management, CVE-2025-30910

CVE, Research URL

CVE-2025-30910

Home page URL

Security reports for CM Download Manager – Document and File Management

Application

CM Download Manager – Document and File Management

Published on
Apr 01, 2025
Research Description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in CreativeMindsSolutions CM Download Manager allows Path Traversal. This issue affects CM Download Manager: from n/a through 2.9.6.
Affected versions
Min -, max 3.0.0.
Status
vulnerable
Previous vulnerability researches
CM Download Manager – Document and File Management (CVE-2025-24758) , Feb 19, 2025
CM Download Manager – Document and File Management (CVE-2020-27344) , Jun 06, 2024
CM Download Manager – Document and File Management (CVE-2014-8877) , Jun 06, 2024
CM Download Manager – Document and File Management (CVE-2024-1962) , Jun 06, 2024
CM Download Manager – Document and File Management (CVE-2014-9129) , Jun 06, 2024
New vulnerability
WordPress Review Plugin: The Ultimate Solution for Building a Review Website (CVE-2025-2158) , May 11, 2025
Drag and Drop Multiple File Upload for WooCommerce (CVE-2025-4403) , May 11, 2025
Contact Us By Lord Linus (CVE-2025-1382) , May 11, 2025
Contact Form by WPForms – Drag & Drop Form Builder for WordPress (CVE-2025-3794) , May 10, 2025
Jeg Elementor Kit (CVE-2025-2944) , May 10, 2025