Simple Download Monitor

6.5 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Description

The Simple Download Monitor plugin for WordPress is vulnerable to time-based SQL Injection via the order parameter in all versions up to, and including, 3.9.33 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Contributor-level access and above, and permissions granted by an Administrator, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

Basic Information

ID CVE-2025-8977

Source Wordfence

Published Aug 28, 2025 at 04:24

Affected Product

Vendor mra13

Product Simple Download Monitor

Version *

Affected Versions mra13 Simple Download Monitor *

CWE Classification

CWE-89

References

{
    "lastseen": "",
    "description": "The Simple Download Monitor plugin for WordPress is vulnerable to time-based SQL Injection via the order parameter in all versions up to, and including, 3.9.33 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.  This makes it possible for authenticated attackers, with Contributor-level access and above, and permissions granted by an Administrator, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.",
    "published": "2025-08-28T04:24:10.321Z",
    "modified": "2025-08-28T04:24:10.321Z",
    "type": "cve",
    "title": "Simple Download Monitor <= 3.9.33 - Simple Download Monitor <= 3.9.33 \u2013 Authenticated (Contributor+) SQL Injection via order parameter in Log Export functionality",
    "source": "Wordfence",
    "references": "https://www.wordfence.com/threat-intel/vulnerabilities/id/44a98565-7861-4489-9009-43292b6e46df?source=cve\nhttps://plugins.svn.wordpress.org/simple-download-monitor/tags/3.9.33/main.php#261\nhttps://plugins.trac.wordpress.org/browser/simple-download-monitor/tags/3.9.33/main.php#L255\nhttps://plugins.trac.wordpress.org/changeset/3346068/",
    "id": "CVE-2025-8977",
    "bulletinFamily": "",
    "cwe": [
        "CWE-89"
    ],
    "cvelist": null,
    "sourceData": "mra13 Simple Download Monitor *",
    "sourceHref": "",
    "cvss": {
        "score": 6.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Simple Download Monitor",
    "version": "*",
    "vendor": "mra13",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Simple Download Monitor <= 3.9.33 - Simple Download Monitor <= 3.9.33 – Authenticated (Contributor+) SQL Injection via order parameter in Log Export functionality_CVE-2025-8977