What the vulnerability does
01Description
Server-Side Request Forgery (SSRF) vulnerability in WPChill Download Monitor.This issue affects Download Monitor: from n/a through 4.8.1.
CVE-2023-31219
MEDIUM
CVE-2023-31219: WordPress Download Monitor Plugin <= 4.8.1 is vulnerable to Server Side Request Forgery (SSRF)
CVSS base score
4.1/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:N
Key dates
02Disclosure timeline
November 13, 2023
CVE published
April 28, 2026
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2026-26338 Hyland Alfresco Transformation Service SSRF
CVE-2026-35409 Directus has a SSRF Protection Bypass via IPv4-Mapped IPv6 Addresses in File Import
CVE-2026-2274 Arbitrary File Read and SSRF in Google AppSheet
CVE-2025-12388 B Carousel Block – Responsive Image and Content Carousel <= 1.1.5 - Missing Authorization to Authenticated (Subscriber+) Server-Side Request Forgery
CVE-2022-2267 MailChimp for Woocommerce < 2.7.1 - Subscriber+ SSRF
