CVE-2023-34007
WordPress Download Monitor Plugin <= 4.8.3 is vulnerable to Arbitrary File Upload
Unrestricted Upload of File with Dangerous Type vulnerability in WPChill Download Monitor.This issue affects Download Monitor: from n/a through 4.8.3.
We have discovered 1,555 live websites that are affected by CVE-2023-34007.
Affected Software
| Product |  Download Monitor |
| Category | Wordpress Plugins |
| Vulnerable Versions |
|
| Total Vulnerable Versions | 76 |
| Vulnerable Domains | 1,555 live websites (8.98% of Download Monitor install base) |
Distribution by Website Rank
The diagram provides a graphic representation of the correlation between the occurrence of CVE-2023-34007 and the relative popularity of websitesDetails
- Published - Dec 20, 2023
- Updated - Dec 20, 2023
Credits
- Tien Nguyen Anh (Patchstack Alliance) (finder)
CWE
CVE References
CWE References
Countries
 United States | 366 websites |
 Germany | 263 websites |
 Japan | 99 websites |
 GB | 81 websites |
 France | 73 websites |
 Italy | 68 websites |
 Spain | 59 websites |
 Netherlands | 51 websites |
 Brazil | 33 websites |
 Canada | 31 websites |
TLDs
| .com | 577 websites |
| .de | 178 websites |
| .org | 108 websites |
| .net | 44 websites |
| .co.uk | 42 websites |
| .it | 40 websites |
| .es | 35 websites |
| .nl | 34 websites |
| .jp | 28 websites |
| .com.br | 27 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redGeographical Distribution
The distribution of websites across the globe that are exposed to CVE-2023-34007 through included software libraries and plugins.Websites affected by CVE-2023-34007
Top websites that are affected by CVE-2023-34007. Please click on the "Contact us" button above to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ********.com | United States | **,*** | |
| ***.*******.com | United States | **,*** | |
| ***************.org | Netherlands | **,*** | |
| ***.****.org | United States | **,*** | |
| ***.**************.fi |  Finland | **,*** | |
| ***********.com | United States | ***,*** | |
| ***.**********.**.uk | GB | ***,*** | |
| **********.com |  South Africa | ***,*** | |
| ***.****.org | United States | ***,*** | |
| ***********.org | United States | ***,*** |