This page lists publicly disclosed CVE vulnerabilities affecting adobe download_manager (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-2926 | The Download Manager WordPress plugin before 3.2.55 does not validate one of its settings, which could allow high privilege users such as admin to list and read arbitrary files and folders outside of the blog directory | [email protected] | 4.9 | 2.74% | 2022-09-26 | 2025-05-21 |
| CVE-2020-9688 | Adobe Download Manager version 2.0.0.518 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution. | [email protected] | 7.8 | 4.51% | 2020-07-17 | 2024-11-21 |
| CVE-2019-8071 | Adobe Download Manager versions 2.0.0.363 have an insecure file permissions vulnerability. Successful exploitation could lead to privilege escalation. | [email protected] | 9.8 | 0.65% | 2019-10-17 | 2024-11-21 |
| CVE-2010-0189 | A certain ActiveX control in NOS Microsystems getPlus Download Manager (aka DLM or Downloader) 1.5.2.35, as used in Adobe Download Manager, improperly validates requests involving web sites that are not in subdomains, which allows remote attackers to force the download and installation of arbitrary programs via a crafted name for a download site. | [email protected] | 9.3 | 2.47% | 2010-02-23 | 2026-04-29 |
| CVE-2006-5856 | Stack-based buffer overflow in the Adobe Download Manager before 2.2 allows remote attackers to execute arbitrary code via a long section name in the dm.ini file, which is populated via an AOM file. | [email protected] | 6.8 | 56.66% | 2006-12-06 | 2026-04-23 |