cleantalk
Vulnerabilities and Security Researches

Download Monitor, CVE-2025-47439

CVE, Research URL

CVE-2025-47439

Home page URL

Security reports for Download Monitor

Application

Download Monitor

Published on
May 07, 2025
Research Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WP Chill Download Monitor allows PHP Local File Inclusion. This issue affects Download Monitor: from n/a through 5.0.22.
Affected versions
Min -, max 5.0.23.
Status
vulnerable
Previous vulnerability researches
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin (CVE-2024-7129) , Sep 15, 2024
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin (CVE-2024-7877) , Oct 17, 2024
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin (CVE-2024-7876) , Oct 17, 2024
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin (CVE-2024-22311) , Jun 07, 2024
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin (CVE-2024-4288) , Jun 07, 2024
New vulnerability
Top 10 – WordPress Popular posts by WebberZone (CVE-2025-47509) , May 09, 2025
Easy Replace Image (CVE-2025-47483) , May 09, 2025
Donation Forms by Charitable – Donations Plugin & Fundraising Platform for WordPress (CVE-2025-47520) , May 09, 2025
GamiPress – The #1 gamification plugin to reward points, achievements, badges & ranks in WordPress (CVE-2025-47508) , May 09, 2025
Simple calendar for Elementor (CVE-2025-47542) , May 09, 2025