Lucene search
K

8 matches found

Nmap
Nmap
added 2015/11/11 5:2 p.m.143 views

http-vuln-cve2014-8877 NSE Script

Exploits a remote code injection vulnerability CVE-2014-8877 in Wordpress CM Download Manager plugin. Versions = 2.0.0 are known to be affected. CM Download Manager plugin does not correctly sanitise the user input which allows remote attackers to execute arbitrary PHP code via the CMDsearch...

10CVSS0.3AI score0.99448EPSS
Exploits39
NVD
NVD
added 2014/12/05 6:59 p.m.23 views

CVE-2014-8877

The alterSearchQuery function in lib/controllers/CmdownloadController.php in the CreativeMinds CM Downloads Manager plugin before 2.0.4 for WordPress allows remote attackers to execute arbitrary PHP code via the CMDsearch parameter to cmdownloads/, which is processed by the PHP createfunction...

10CVSS7.5AI score0.14804EPSS
Exploits6References5
CVE
CVE
added 2014/12/05 6:0 p.m.64 views

CVE-2014-8877

CM Downloads Manager for WordPress (CreativeMinds) contains a remote PHP code execution vulnerability (CVE-2014-8877) in the alterSearchQuery function of lib/controllers/CmdownloadController.php. The issue allows an attacker to inject PHP code via the CMDsearch parameter sent to cmdownloads/, whe...

10CVSS9.6AI score0.14804EPSS
Exploits6References5Affected Software1
Cvelist
Cvelist
added 2014/12/05 6:0 p.m.32 views

CVE-2014-8877

The alterSearchQuery function in lib/controllers/CmdownloadController.php in the CreativeMinds CM Downloads Manager plugin before 2.0.4 for WordPress allows remote attackers to execute arbitrary PHP code via the CMDsearch parameter to cmdownloads/, which is processed by the PHP createfunction...

7.5AI score0.14804EPSS
Exploits6References5
Exploit DB
Exploit DB
added 2014/11/22 12:0 a.m.61 views

WordPress Plugin CM Download Manager 2.0.0 - Code Injection

Vulnerability title: Code Injection in Wordpress CM Download Manager plugin 2.0.0 CVE: CVE-2014-8877 Plugin: CM Download Manager plugin Vendor: CreativeMinds - https://www.cminds.com/ Link download: https://wordpress.org/plugins/cm-download-manager/ Affected version: 2.0.0 and previous version...

10CVSS7AI score0.14804EPSS
Exploits6
OpenVAS
OpenVAS
added 2014/11/21 12:0 a.m.31 views

WordPress CM Download Manager Plugin Remote PHP Code Execution Vulnerability

The CM Download Manager for WordPress is prone to remote PHP-code execution vulnerability SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS9.4AI score0.14804EPSS
Exploits6References1
0day.today
0day.today
added 2014/11/20 12:0 a.m.46 views

WordPress CM Download Manager 2.0.0 Code Injection Vulnerability

WordPress CM Download Manager plugin versions 2.0.0 and below suffer from a code injection vulnerability. Vulnerability title: Code Injection in Wordpress CM Download Manager plugin CVE: CVE-2014-8877 Plugin: CM Download Manager plugin Vendor: CreativeMinds - https://www.cminds.com/ Product:...

10CVSS1.2AI score0.14804EPSS
Exploits6
Packet Storm
Packet Storm
added 2014/11/20 12:0 a.m.54 views

WordPress CM Download Manager 2.0.0 Code Injection

Vulnerability title: Code Injection in Wordpress CM Download Manager plugin CVE: CVE-2014-8877 Plugin: CM Download Manager plugin Vendor: CreativeMinds - https://www.cminds.com/ Product: https://wordpress.org/plugins/cm-download-manager/ Affected version: 2.0.0 and previous version Fixed version:...

10CVSS0.9AI score0.14804EPSS
Exploits6
Rows per page
Query Builder