CVE-2014-9260 in Download Manager Plugininfo

Summary

The basic_settings function in the download manager plugin for WordPress before 2.7.3 allows remote authenticated users to update every WordPress option.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

12/04/2014

Disclosure

08/07/2017

Moderation

VulDB entry created

Entries

VDB-104925 (1)

CPE

ready

CWE

CWE-264 (Confirmed)

Exploit

Download

CVSS

7.5

EPSS

0.03809

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2014-9260
NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-9260
CVE Details	https://www.cvedetails.com/cve/CVE-2014-9260/

◂ Previous Overview Next ▸