Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2014-3848
HistoryMay 23, 2014 - 2:00 p.m.

CVE-2014-3848

2014-05-2314:00:00
mitre
www.cve.org
1
imember360
wordpress
database_credentials
remote_attackers
access_restriction

AI Score

6.7

Confidence

Low

EPSS

0.009

Percentile

82.7%

JSON

The iMember360 plugin before 3.9.001 for WordPress does not properly restrict access, which allows remote attackers to obtain database credentials via the i4w_dbinfo parameter.

Related

patchstack 1
nvd 1
prion 1
cve 1
wpvulndb 1
exploitdb 1
patchstack
patchstack
WordPress iMember360 Plugin <= 3.9.001 - Disclosure of Database Credentials
2014-05-23 00:00:00
nvd
nvd
CVE-2014-3848
2014-05-23 14:55:12
prion
prion
Design/Logic Flaw
2014-05-23 14:55:00
cve
cve
CVE-2014-3848
2014-05-23 14:55:12
wpvulndb
wpvulndb
iMember360 < 3.9.001 - Multiple Issues
2014-04-24 00:00:00
exploitdb
exploitdb
WordPress Plugin iMember360 3.8.012 &lt; 3.9.001 - Multiple Vulnerabilities
2014-04-28 00:00:00

AI Score

6.7

Confidence

Low

EPSS

0.009

Percentile

82.7%

JSON
Related for CVELIST:CVE-2014-3848
patchstack1nvd1prion1cve1wpvulndb1exploitdb1