CVE-2014-8336
WP DB Manager < 2.7.2 - Arbitrary File Read
Severity Score
6.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The "Sql Run Query" panel in WP-DBManager (aka Database Manager) plugin before 2.7.2 for WordPress allows remote attackers to read arbitrary files by leveraging failure to sufficiently limit queries, as demonstrated by use of LOAD_FILE in an INSERT statement.
El panel "Sql Run Query" en WP-DBManager (también conocido como Database Manager) en versiones anteriores a la 2.7.2 para WordPress permite que los atacantes remotos lean archivos arbitrarios aprovechándose de que no limita las consultas suficientemente, tal y como se demuestra con el uso de LOAD_FILE en una declaración INSERT.
*Credits:
Larry W. Cashdollar
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2014-10-13 CVE Published
- 2014-10-20 CVE Reserved
- 2023-05-29 EPSS Updated
- 2024-08-06 CVE Updated
- 2024-08-06 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-20: Improper Input Validation
- CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| https://exchange.xforce.ibmcloud.com/vulnerabilities/97694 | Issue Tracking | |
| https://wordpress.org/plugins/wp-dbmanager/#developers | Third Party Advisory |
| URL | Date | SRC |
|---|---|---|
| http://www.vapid.dhs.org/advisories/wordpress/plugins/wp-dbmanager-2.7.1/index.html | 2024-08-06 |
| URL | Date | SRC |
|---|---|---|
| http://www.openwall.com/lists/oss-security/2014/10/21/3 | 2018-01-18 | |
| https://github.com/lesterchan/wp-dbmanager/commit/7037fa8f61644098044379190d1d4bf1883b8e4a | 2018-01-18 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Wp-dbmanager Project Search vendor "Wp-dbmanager Project" | Wp-dbmanager Search vendor "Wp-dbmanager Project" for product "Wp-dbmanager" | <= 2.7.1 Search vendor "Wp-dbmanager Project" for product "Wp-dbmanager" and version " <= 2.7.1" | wordpress |
Affected
| ||||||