Product
awesomemotive easy digital downloads
60 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-4670
CVE-2025-2252
CVE-2024-13517
CVE-2024-12875
CVE-2024-9654
CVE-2023-40005
CVE-2024-43162
CVE-2022-2439
CVE-2024-5057
CVE-2024-6692
CVE-2024-6691
CVE-2024-32100
CVE-2024-31113
CVE-2024-31293
CVE-2024-2302
CVE-2024-0659
CVE-2023-51684
CVE-2023-30869
CVE-2023-0380
CVE-2023-23489
CVE-2022-3600
CVE-2022-2387
CVE-2022-33900
CVE-2022-0707
CVE-2022-0706
CVE-2021-39354
CVE-2015-9524
CVE-2015-9523
CVE-2015-9522
CVE-2015-9521
CVE-2015-9520
CVE-2015-9519
CVE-2015-9518
CVE-2015-9517
CVE-2015-9516
CVE-2015-9515
CVE-2015-9514
CVE-2015-9513
CVE-2015-9512
CVE-2015-9511
CVE-2015-9510
CVE-2015-9509
CVE-2015-9508
CVE-2015-9507
CVE-2015-9506
CVE-2015-9505
CVE-2015-9536
CVE-2015-9535
CVE-2015-9534
CVE-2015-9533
CVE-2015-9532
CVE-2015-9531
CVE-2015-9530
CVE-2015-9529
CVE-2015-9528
CVE-2015-9527
CVE-2015-9526
CVE-2015-9525
CVE-2019-15116
CVE-2015-9324
< 3.3.9
The Easy Digital Downloads - eCommerce Payments and Subscriptions made easy plugin for WordPress is vulnerable to Stored Cross-Sit
< 3.3.7
The Easy Digital Downloads - eCommerce Payments and Subscriptions made easy plugin for WordPress is vulnerable to Sensitive Inform
< 3.3.3
The Easy Digital Downloads - eCommerce Payments and Subscriptions made easy plugin for WordPress is vulnerable to Stored Cross-Sit
< 3.3.3
The Easy Digital Downloads - eCommerce Payments and Subscriptions made easy plugin for WordPress is vulnerable to Directory Traver
>= 3.1 and < 3.3.5
The Easy Digital Downloads plugin for WordPress is vulnerable to Improper Authorization in versions 3.1 through 3.3.4. This is due
< 3.2.0
Missing Authorization vulnerability in Syed Balkhi Easy Digital Downloads easy-digital-downloads allows Exploiting Incorrectly Con
< 3.3.0
Missing Authorization vulnerability in Easy Digital Downloads allows Exploiting Incorrectly Configured Access Control Security Lev
< 3.3.4
The Easy Digital Downloads - Simple eCommerce for Selling Digital Files plugin for WordPress is vulnerable to deserialization of u
<= 3.2.12
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Easy Digital Downloads allow
< 3.3.3
The Easy Digital Downloads - Sell Digital Files & Subscriptions (eCommerce Store + Payments Made Easy) plugin for WordPress is vul
< 3.3.3
The Easy Digital Downloads - Sell Digital Files & Subscriptions (eCommerce Store + Payments Made Easy) plugin for WordPress is vul
< 3.2.12
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Easy Digital Downloads.This issue affects Easy Digital
< 3.2.12
Cross-Site Request Forgery (CSRF) vulnerability in Easy Digital Downloads.This issue affects Easy Digital Downloads: from n/a thro
< 3.2.7
Cross-Site Request Forgery (CSRF) vulnerability in Easy Digital Downloads.This issue affects Easy Digital Downloads: from n/a thro
< 3.2.10
The Easy Digital Downloads - Sell Digital Files & Subscriptions (eCommerce Store + Payments Made Easy) plugin for WordPress is vul
<= 3.2.6
The Easy Digital Downloads - Sell Digital Files (eCommerce Store & Payments Made Easy) plugin for WordPress is vulnerable to Store
<= 3.2.5
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Easy Digital Downloads Easy
>= 3.1 and < 3.1.1.4.2
Improper Authentication vulnerability in Easy Digital Downloads plugin allows unauth. Privilege Escalation. This issue affects Ea
< 3.1.0.5
The Easy Digital Downloads WordPress plugin before 3.1.0.5 does not validate and escape some of its block options before outputtin
< 3.1.0.4
The Easy Digital Downloads WordPress Plugin, versions 3.1.0.2 & 3.1.0.3, is affected by an unauthenticated SQL injection vulnerabi
< 3.1.0.2
The Easy Digital Downloads WordPress plugin before 3.1.0.2 does not validate data when its output in a CSV file, which could lead
< 3.0
The Easy Digital Downloads WordPress plugin before 3.0 does not have CSRF check in place when deleting payment history, and does n
<= 3.0.1
PHP Object Injection vulnerability in Easy Digital Downloads plugin <= 3.0.1 at WordPress.
< 2.11.6
The Easy Digital Downloads WordPress plugin before 2.11.6 does not have CSRF check in place when inserting payment notes, which co
< 2.11.6
The Easy Digital Downloads WordPress plugin before 2.11.6 does not sanitise and escape the Downloadable File Name in the Logs, whi
<= 2.11.2
The Easy Digital Downloads WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the $start_date and $end_date para
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Recount Earnings extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.1
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Recommended Products extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) QR Code extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Pushover Notifications extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Per Product Emails extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) PDF Stamper extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) PDF Invoices extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Manual Purchases extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.1
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Invoices extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) htaccess Editor extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Free Downloads extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10,
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Favorites extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) CSV Manager extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Conditional Success Redirects extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Cross-sell Upsell extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Content Restriction extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Commissions extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Attach Accounts to Orders extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x bef
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Amazon S3 extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) core component 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11,
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Twenty-Twelve theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Shoppette theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x be
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Quota theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Lattice theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x befo
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Digital Store theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Wish Lists extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Upload File extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Stripe extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x b
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Software Licensing extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Simple Shipping extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Reviews extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x
>= 1.8 and < 1.8.7
The Easy Digital Downloads (EDD) Recurring Payments extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9
< 2.9.16
The easy-digital-downloads plugin before 2.9.16 for WordPress has XSS related to IP address logging.
< 2.3.3
The easy-digital-downloads plugin before 2.3.3 for WordPress has SQL injection.