1 results (0.003 seconds)
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2014-3114 – EZPZ One Click Backup <= 12.03.10 - Unauthenticated Command Injection
https://notcve.org/view.php?id=CVE-2014-3114
The EZPZ One Click Backup (ezpz-one-click-backup) plugin 12.03.10 and earlier for WordPress allows remote attackers to execute arbitrary commands via the cmd parameter to functions/ezpz-archive-cmd.php. El plugin EZPZ One Click Backup (ezpz-one-click-backup), en versiones 12.03.10 y anteriores para WordPress, permite que atacantes remotos ejecuten comandos arbitrarios mediante el parámetro cmd en functions/ezpz-archive-cmd.php. • http://www.openwall.com/lists/oss-security/2014/05/01/11 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •