Lucene search

[email protected]CVE-2014-5337

HistoryAug 29, 2014 - 2:00 p.m.

CVE-2014-5337

2014-08-2914:00:00

CWE-264

[email protected]

web.nvd.nist.gov

wordpress

mobile pack

cve-2014-5337

security vulnerability

password protection

sensitive information

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.5 Medium

AI Score

Confidence

Low

0.027 Low

EPSS

Percentile

90.5%

JSON

The WordPress Mobile Pack plugin before 2.0.2 for WordPress does not properly restrict access to password protected posts, which allows remote attackers to obtain sensitive information via an exportarticles action to export/content.php.

Affected configurations

NVD

Node

wordpress_mobile_pack_projectwordpress_mobile_packRange≤2.0.1wordpress

wordpress_mobile_pack_projectwordpress_mobile_packMatch1.2.0wordpress

wordpress_mobile_pack_projectwordpress_mobile_packMatch1.2.0bwordpress

wordpress_mobile_pack_projectwordpress_mobile_packMatch1.2.0b2wordpress

wpmobilepackwordpress_mobile_packMatch1.0.8223wordpress

wpmobilepackwordpress_mobile_packMatch1.1.1wordpress

wpmobilepackwordpress_mobile_packMatch1.1.2wordpress

wpmobilepackwordpress_mobile_packMatch1.1.3wordpress

wpmobilepackwordpress_mobile_packMatch1.1.9wordpress

wpmobilepackwordpress_mobile_packMatch1.1.91wordpress

wpmobilepackwordpress_mobile_packMatch1.1.92wordpress

wpmobilepackwordpress_mobile_packMatch1.2.1wordpress

wpmobilepackwordpress_mobile_packMatch1.2.3wordpress

wpmobilepackwordpress_mobile_packMatch1.2.4wordpress

wpmobilepackwordpress_mobile_packMatch1.2.5wordpress

wpmobilepackwordpress_mobile_packMatch2.0wordpress

CPENameOperatorVersion
wordpress_mobile_pack_project:wordpress_mobile_packwordpress mobile pack project wordpress mobile packle2.0.1
wordpress_mobile_pack_project:wordpress_mobile_packwordpress mobile pack project wordpress mobile packeq1.2.0
wpmobilepack:wordpress_mobile_packwpmobilepack wordpress mobile packeq1.0.8223
wpmobilepack:wordpress_mobile_packwpmobilepack wordpress mobile packeq1.1.1
wpmobilepack:wordpress_mobile_packwpmobilepack wordpress mobile packeq1.1.2
wpmobilepack:wordpress_mobile_packwpmobilepack wordpress mobile packeq1.1.3
wpmobilepack:wordpress_mobile_packwpmobilepack wordpress mobile packeq1.1.9
wpmobilepack:wordpress_mobile_packwpmobilepack wordpress mobile packeq1.1.91
wpmobilepack:wordpress_mobile_packwpmobilepack wordpress mobile packeq1.1.92
wpmobilepack:wordpress_mobile_packwpmobilepack wordpress mobile packeq1.2.1

CPE	Name	Operator	Version
wordpress_mobile_pack_project:wordpress_mobile_pack	wordpress mobile pack project wordpress mobile pack	le	2.0.1
wordpress_mobile_pack_project:wordpress_mobile_pack	wordpress mobile pack project wordpress mobile pack	eq	1.2.0
wpmobilepack:wordpress_mobile_pack	wpmobilepack wordpress mobile pack	eq	1.0.8223
wpmobilepack:wordpress_mobile_pack	wpmobilepack wordpress mobile pack	eq	1.1.1
wpmobilepack:wordpress_mobile_pack	wpmobilepack wordpress mobile pack	eq	1.1.2
wpmobilepack:wordpress_mobile_pack	wpmobilepack wordpress mobile pack	eq	1.1.3
wpmobilepack:wordpress_mobile_pack	wpmobilepack wordpress mobile pack	eq	1.1.9
wpmobilepack:wordpress_mobile_pack	wpmobilepack wordpress mobile pack	eq	1.1.91
wpmobilepack:wordpress_mobile_pack	wpmobilepack wordpress mobile pack	eq	1.1.92
wpmobilepack:wordpress_mobile_pack	wpmobilepack wordpress mobile pack	eq	1.2.1