Lucene search
HistoryJan 23, 2015 - 3:59 p.m.
CVE-2014-8802
cve-2014-8802
pie register
wordpress
security
vulnerability
nvd
6.8 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.088 Low
EPSS
Percentile
94.6%
The Pie Register plugin before 2.0.14 for WordPress does not properly restrict access to certain functions in pie-register.php, which allows remote attackers to (1) add a user by uploading a crafted CSV file or (2) activate a user account via a verifyit action.
| CPE | Name | Operator | Version |
|---|---|---|---|
| genetechsolutions:pie_register | genetechsolutions pie register | le | 2.0.13 |
Related
wpvulndb
wpvulndb
Pie Register <= 2.0.13 - Privilege escalation
2015-01-17 17:32:57
zdt
zdt
Wordpress Pie Register Plugin 2.0.13 - Privilege Escalation Vulnerability
2015-01-17 00:00:00
cvelist
cvelist
CVE-2014-8802
2015-01-23 15:00:00
prion
prion
Deserialization of untrusted data
2015-01-23 15:59:00
patchstack
patchstack
WordPress Pie Register Plugin 2.0.13 - Privilege Escalation
2015-01-16 00:00:00
exploitpack
exploitpack
WordPress Plugin Pie Register 2.0.13 - Privilege Escalation
2015-01-16 00:00:00
exploitdb
exploitdb
WordPress Plugin Pie Register 2.0.13 - Privilege Escalation
2015-01-16 00:00:00
6.8 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.088 Low
EPSS
Percentile
94.6%
Related for CVE-2014-8802