CVE-2014-5155 in Theme My Login Plugininfo

Prediction

by VulDB Data Team • 03/24/2025

A vulnerability was detected in Theme My Login Plugin up to 6.3.9 on WordPress. This affects the function theme-my-login of the component Shortcode Handler. Performing a manipulation of the argument login_template results in file inclusion. Remote exploitation of the attack is possible. Upgrading to version 6.3.10 is able to mitigate this issue. It is suggested to upgrade the affected component.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservation

07/30/2014

Moderation

accepted

Entry

VDB-300886

CPE

ready

CWE

CWE-73 (confirmed)

CVSS

6.3 (VulDB)

EPSS

0.00000

KEV

Activities

very low

Sector

Hostingprovider

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2014-5155
NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-5155
CVE Details	https://www.cvedetails.com/cve/CVE-2014-5155/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!