CVE-2014-3848
CVE-2014-3848 affects the WordPress plugin iMember360 before version 3.9.001. The root cause is improper access restrictions that allow remote attackers to obtain database credentials through the i4w_dbinfo parameter. Reported impact is disclosure of database credentials; no exploitation details ...