CVE-2025-10747 | WP-DownloadManager Plugin up to 1.68.11 on WordPress download-add.php unrestricted upload

A vulnerability identified as critical has been detected in WP-DownloadManager Plugin up to 1.68.11 on WordPress. The impacted element is an unknown function of the file download-add.php. This manipulation causes unrestricted upload.

This vulnerability is registered as CVE-2025-10747. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More