CVE-2025-4670

Published May 29th, 2025

View on NVD ↗

CVSS v3

6.4

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

The Easy Digital Downloads – eCommerce Payments and Subscriptions made easy plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's edd_receipt shortcode in all versions up to, and including, 3.3.8.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Easy Digital Downloads – eCommerce Payments and Subscriptions made easy

<h4>The Best WordPress eCommerce Plugin to Sell Digital Products</h4> <p><a href="https://easydigitaldownloads.com/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Easy Digital Downloads</a> is the most powerful WordPress ecommerce plugin built specifically for selling digital products and digital downloads. Whether you sell ebooks, software, templates, music, photography, courses, or any other digital product, Easy Digital Downloads gives you everything you need to run your digital store – with unlimited products, unlimited transactions, and zero listing fees.</p> <p>Over 50,000 digital creators and online store owners trust Easy Digital Downloads to sell digital products on WordPress. With more than 30 million orders processed and hundreds of millions in digital sales, EDD is the proven ecommerce solution for your digital download store.</p> <blockquote> <p><strong>Easy Digital Downloads Pro</strong><br /> This plugin is the lite version of Easy Digital Downloads Pro, which comes with <a href="https://easydigitaldownloads.com/features/subscriptions-billing/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">subscriptions and recurring payments</a>, <a href="https://easydigitaldownloads.com/features/software-licensing/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">software licensing</a>, <a href="https://easydigitaldownloads.com/downloads/content-restriction/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">content restriction for memberships</a>, <a href="https://easydigitaldownloads.com/features/revenue-optimization/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">abandoned cart recovery</a>, and <a href="https://easydigitaldownloads.com/downloads/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">70+ premium ecommerce features</a>. <a href="https://easydigitaldownloads.com/pricing/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Click here to purchase the best premium WordPress ecommerce plugin for digital products now!</a></p> </blockquote> <span class="embed-youtube" style="text-align:center; display: block;"><iframe loading="lazy" class="youtube-player" width="750" height="422" src="https://www.youtube.com/embed/kUEdc8sB3uQ?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent" allowfullscreen="true" style="border:0;" sandbox="allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox"></iframe></span> <h4>Start Selling Digital Products in Minutes</h4> <p>You shouldn’t need a computer science degree to sell digital products online. Easy Digital Downloads makes it simple to create your digital store and start selling within minutes. Run the Setup Wizard and you’ll immediately have access to an integrated shopping cart, flexible payment processing with credit cards, PayPal, Apple Pay, and Google Pay, a streamlined ecommerce checkout, customer management, detailed ecommerce reports, secure file storage for your digital downloads, discount code management, and more.</p> <p>Too often, creators must choose between powerful ecommerce features and affordable pricing. Easy Digital Downloads gives you both. Our free WordPress ecommerce plugin provides the foundation to sell digital products, while our Pro plans unlock advanced digital store features as your business grows. That’s why some of the most successful digital product businesses trust Easy Digital Downloads for their ecommerce store.</p> <h4>Secure Digital Product Payments with Stripe, PayPal & More</h4> <p>With 1-click connections to the most popular payment processors, you’ll be selling digital products within minutes. Your customers can checkout with ease using the most popular payment methods in their region of the world. With Stripe and PayPal powering your digital store, your ecommerce payments are ready to go global across 200+ countries.</p> <p>All of our official payment integrations are built to securely process payments for your digital store, connecting directly with trusted payment processors to keep your digital product transactions safe and reliable.</p> <blockquote> <p>What can I say? Stripe is my go-to payment processor, and without [EDD] I don’t know what I would do. Connect EDD to your Stripe account in seconds, and you’re done!<br /> Matt Whiteley – Whiteley Designs</p> </blockquote> <p>Easy Digital Downloads is a verified member of the <a href="https://stripe.com/partners/directory/easy-digital-downloads" rel="nofollow ugc">Stripe</a>, PayPal, and Square partner programs, so you can process ecommerce payments with confidence knowing that EDD meets their strict quality standards for selling digital products.</p> <p>Accept payments globally in your digital store with these payment methods available immediately:</p> <ul> <li>Credit Card Payments for Digital Products (via Stripe and Square)</li> <li>Apple Pay</li> <li>Google Pay</li> <li>WeChat Pay</li> <li>AliPay</li> <li>Amazon Pay</li> <li>GrabPay</li> <li>Bancontact</li> <li>EPS</li> <li>giropay</li> <li>iDEAL</li> <li>Klarna</li> <li>Przelewy24</li> <li>PayPal</li> <li>PayPal Credit</li> <li>CashApp</li> <li>Link by Stripe</li> <li>Venmo</li> <li>and more!</li> </ul> <p>With our smart payment method integrations for your digital store, you get access to the latest payment methods as soon as they become available – without any code changes or updates to your ecommerce plugin.</p> <h4>Powerful eCommerce Reports for Your Digital Store</h4> <p>Unlock the full potential of your digital store with Easy Digital Downloads and its powerful ecommerce reporting features. Dive deep into the heart of your digital product business with tools designed to give you insights into what’s happening now and help you make decisions that grow your digital download sales.</p> <p>With the included date comparison tools, you can monitor trends in your digital product sales, revenue, customers, and other ecommerce data from one period to another. Some of the ecommerce data points you get access to include:</p> <ul> <li>Customer Growth for Your Digital Store</li> <li>Revenue and Digital Product Sales</li> <li>Filtering by Digital Product</li> <li>Detailed Tax Reports for eCommerce</li> <li>Detailed Category and Tag Reports</li> <li>Revenue and Digital Product Sales by Country</li> <li>Revenue and Sales by Payment Method</li> <li>Recurring Revenue Reports (Requires Pro)</li> </ul> <h4>Sell Any Type of Digital Product</h4> <p>Easy Digital Downloads lets you sell any file type as a digital product. Sell ebooks (.PDF, .EPUB), sell software and plugins (.ZIP), sell templates and design assets (.PSD, .AI), sell music and audio (.MP3, .WAV), sell video (.MP4, .MOV), sell documents (.DOC, .XLS), sell photography (.JPG, .PNG), or any other digital download. Create single digital products, product variations with different pricing, or bundle multiple digital products together – all with no listing fees and no limits on how many digital products you can sell.</p> <h4>Digital Product Checkout That Converts</h4> <p>Your digital store checkout is where sales happen, and Easy Digital Downloads gives you a responsive, optimized ecommerce checkout that converts. The included Checkout Block is fully customizable and designed to reduce friction so customers complete their digital product purchases. Works with Gutenberg, Elementor, and other popular page builders to match your digital store’s design.</p> <h4>Sell Digital Products for Specific Industries</h4> <p>Easy Digital Downloads is the perfect ecommerce solution for creators across dozens of industries. Here are just a few ways digital creators use EDD to sell digital products:</p> <p><strong>Sell Ebooks & Digital Publications</strong> – Sell ebooks, PDFs, digital guides, whitepapers, and publishing content.</p> <p><strong>Sell Software & WordPress Plugins</strong> – Sell software with license keys, automatic updates, and activation tracking for WordPress plugins, themes, and SaaS products.</p> <p><strong>Sell Online Courses & Digital Learning</strong> – Sell courses and access to educational content, training materials, and learning resources.</p> <p><strong>Sell Templates & Design Assets</strong> – Sell Canva templates, Photoshop files, graphic design assets, UI kits, and digital design resources.</p> <p><strong>Sell Music & Audio Downloads</strong> – Sell music, audio files, sound effects, podcast episodes, and audio production resources.</p> <p><strong>Sell Photography & Digital Art</strong> – Sell photos, digital art, stock photography, illustrations, and creative digital assets.</p> <p><strong>Sell Memberships & Gated Content</strong> – Sell access to membership sites, premium content libraries, and subscriber-only resources.</p> <p><strong>Build a Digital Marketplace</strong> – Create a multi-vendor digital marketplace where creators sell digital products and earn commissions.</p> <h4>Manage Your Digital Store Customers</h4> <p>Easy Digital Downloads includes a complete customer management system for your digital store. Track customer lifetime value, view purchase history, manage profiles, and understand your digital product buyers. Every ecommerce interaction is tracked so you can make data-driven decisions about your digital products and strategy.</p> <h4>Protect Your Digital Downloads</h4> <p>Your digital products are safe with Easy Digital Downloads. When a customer purchases your digital product, EDD generates a secure and unique download link that only authorized customers can use. Set expiration times on download links, limit the number of downloads per purchase, and track IP addresses for fraud prevention. Your digital downloads stay protected while your customers get instant access to the files they purchased.</p> <h4>Full Easy Digital Downloads Feature List</h4> <ul> <li><a href="https://easydigitaldownloads.com/features/secure-payments/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Secure Payment Processing</a> – Accept credit cards, PayPal, Apple Pay, Google Pay, and 20+ payment methods in your digital store.</li> <li><a href="https://easydigitaldownloads.com/features/secure-payments/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Stripe Integration</a> – 1-click Stripe setup to sell digital products and accept credit card payments instantly.</li> <li><a href="https://easydigitaldownloads.com/features/secure-payments/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">PayPal Integration</a> – Sell digital products with PayPal, PayPal Credit, and Venmo payments.</li> <li><a href="https://easydigitaldownloads.com/features/optimized-store-checkout/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Optimized eCommerce Checkout</a> – Responsive checkout form built to convert digital product shoppers into buyers.</li> <li><a href="https://easydigitaldownloads.com/features/digital-store-management/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Digital Product Management</a> – Create unlimited digital products with variations, bundles, and flexible pricing.</li> <li><a href="https://easydigitaldownloads.com/features/analytics/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">eCommerce Reports & Analytics</a> – Track digital product sales, revenue, customers, and store performance with detailed reports.</li> <li><a href="https://easydigitaldownloads.com/features/marketing/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Discount Code Management</a> – Run digital store promotions with customizable discount codes, expiration dates, and product limits.</li> <li><a href="https://easydigitaldownloads.com/features/digital-store-management/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Secure File Downloads</a> – Protect digital downloads with unique links, expiration times, and download limits.</li> <li><a href="https://easydigitaldownloads.com/features/digital-store-management/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Customer Management</a> – Track customer lifetime value and purchase history in your digital store.</li> <li><a href="https://easydigitaldownloads.com/features/digital-store-management/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Email Receipts</a> – Fully customizable email receipts branded to your digital product store.</li> <li><a href="https://easydigitaldownloads.com/features/digital-store-management/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Shopping Cart</a> – Built-in shopping cart for selling multiple digital products per transaction.</li> <li><a href="https://easydigitaldownloads.com/features/digital-store-management/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Customer Profiles</a> – Let customers view purchase history and manage their digital download access.</li> <li><a href="https://easydigitaldownloads.com/features/digital-store-management/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Refund Management</a> – Automated refund and dispute handling to keep your digital store records accurate.</li> <li><a href="https://easydigitaldownloads.com/features/sell-globally/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Global Selling</a> – Sell digital products in 200+ countries with multi-currency support.</li> <li><a href="https://easydigitaldownloads.com/features/subscriptions-billing/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Subscriptions & Recurring Payments</a> – Sell digital product subscriptions and build recurring revenue (Pro).</li> <li><a href="https://easydigitaldownloads.com/features/software-licensing/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Software Licensing</a> – Sell software with activatable license keys, update delivery, and activation tracking (Pro).</li> <li><a href="https://easydigitaldownloads.com/downloads/content-restriction/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Content Restriction</a> – Restrict content to customers who purchased specific digital products for membership sites (Pro).</li> <li><a href="https://easydigitaldownloads.com/features/revenue-optimization/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Revenue Optimization</a> – Abandoned cart recovery and AI-powered product recommendations to increase digital store revenue (Pro).</li> <li><a href="https://easydigitaldownloads.com/downloads/product-reviews/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Customer Reviews</a> – Collect and display reviews on your digital products to boost social proof and sales (Pro).</li> <li><a href="https://easydigitaldownloads.com/features/sell-globally/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">EU VAT Compliance</a> – Automatic EU VAT rate management, customer VAT number verification, and compliance exports (Pro).</li> <li><a href="https://easydigitaldownloads.com/downloads/edd-invoices/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Invoices</a> – Generate and deliver professional PDF invoices for digital product purchases (Pro).</li> <li><a href="https://easydigitaldownloads.com/downloads/frontend-submissions/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Frontend Submissions</a> – Build a digital marketplace where vendors submit and sell their own digital products (Pro).</li> <li><a href="https://easydigitaldownloads.com/downloads/commissions/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Commissions</a> – Pay vendors percentage or flat rate commissions on digital product sales (Pro).</li> <li><a href="https://easydigitaldownloads.com/downloads/free-downloads/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Free Downloads</a> – Use free digital products as lead magnets to grow your email list (Pro).</li> <li><a href="https://easydigitaldownloads.com/downloads/recommended-products/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Recommended Products</a> – AI-powered digital product recommendations at checkout to increase average order value (Pro).</li> <li><a href="https://easydigitaldownloads.com/downloads/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">100+ Integrations</a> – Connect your digital store with Mailchimp, Zapier, AffiliateWP, and dozens more.</li> </ul> <p>Extensible, adaptable, and open source — Easy Digital Downloads is created with designers and developers in mind. With our extensive list of ecommerce integrations as well as the included hooks and filters, the possibilities for your digital store are endless.</p> <p>We’ve made it even easier, with <a href="https://library.wpcode.com/profile/easydigitaldownloads/" rel="nofollow ugc">1-Click installation of code snippets via WPCode</a>.</p> <blockquote> <p>EDD gives me a solid platform out of the box, with the flexibility of being able to customize anything I want or need to. The best of both worlds!<br /> Brian Hogg – SellingPlugins.com</p> </blockquote> <h4>Grow Digital Product Revenue by Going Pro</h4> <p>With our Pro plans you can get access to <a href="https://easydigitaldownloads.com/downloads/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">additional ecommerce features</a> and supercharge your digital product business. Some of our most popular features for selling digital products in Pro are:</p> <ul> <li><strong>EU VAT Compliance</strong> – Easily manage EU VAT compliance for your digital store. Get automatic rate updates, collect and verify customer VAT numbers, export EU VAT data for compliance, and more.</li> <li><strong>Invoices</strong> – Create and send beautiful PDF invoices to your digital product customers.</li> <li><strong><a href="https://easydigitaldownloads.com/features/subscriptions-billing/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Subscriptions</a></strong> – Build a sustainable ecommerce business and add recurring revenue to your digital store by selling subscriptions for your digital products.</li> <li><strong><a href="https://easydigitaldownloads.com/downloads/product-reviews/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Reviews</a></strong> – Let your happy customers promote your digital products for you! Schedule automatic review requests, show average ratings and rating breakdowns on your digital store.</li> <li><strong><a href="https://easydigitaldownloads.com/downloads/content-restriction/?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin" rel="nofollow ugc">Content Restriction</a></strong> – Restrict content on your site and

WordPress Plugin Directory

5.98M