Lucene search
HistoryJan 23, 2015 - 3:59 p.m.
CVE-2014-8802
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.6
Confidence
Low
EPSS
0.088
Percentile
94.6%
The Pie Register plugin before 2.0.14 for WordPress does not properly restrict access to certain functions in pie-register.php, which allows remote attackers to (1) add a user by uploading a crafted CSV file or (2) activate a user account via a verifyit action.
Affected configurations
Node
genetechsolutionspie_registerRange≤2.0.13wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| genetechsolutions | pie_register | * | cpe:2.3:a:genetechsolutions:pie_register:*:*:*:*:*:wordpress:*:* |
Related
patchstack
patchstack
WordPress Pie Register Plugin 2.0.13 - Privilege Escalation
2015-01-16 00:00:00
prion
prion
Deserialization of untrusted data
2015-01-23 15:59:00
zdt
zdt
Wordpress Pie Register Plugin 2.0.13 - Privilege Escalation Vulnerability
2015-01-17 00:00:00
wpvulndb
wpvulndb
Pie Register <= 2.0.13 - Privilege escalation
2015-01-17 17:32:57
cvelist
cvelist
CVE-2014-8802
2015-01-23 15:00:00
exploitdb
exploitdb
WordPress Plugin Pie Register 2.0.13 - Privilege Escalation
2015-01-16 00:00:00
exploitpack
exploitpack
WordPress Plugin Pie Register 2.0.13 - Privilege Escalation
2015-01-16 00:00:00
cve
cve
CVE-2014-8802
2015-01-23 15:59:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.6
Confidence
Low
EPSS
0.088
Percentile
94.6%
Related for NVD:CVE-2014-8802