CVE-2014-5337
Published Aug 29, 2014
Last updated 6 years ago
Overview
- Description
- The WordPress Mobile Pack plugin before 2.0.2 for WordPress does not properly restrict access to password protected posts, which allows remote attackers to obtain sensitive information via an exportarticles action to export/content.php.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-264
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:wordpress_mobile_pack_project:wordpress_mobile_pack:*:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "F147661F-7D08-4231-8229-B4273D67C958",
"versionEndIncluding": "2.0.1"
},
{
"criteria": "cpe:2.3:a:wordpress_mobile_pack_project:wordpress_mobile_pack:1.2.0:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "EF6C3461-6D06-41C2-B7CB-8A15E77F1F8B"
},
{
"criteria": "cpe:2.3:a:wordpress_mobile_pack_project:wordpress_mobile_pack:1.2.0:b:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "FA2446E1-1FE5-4EE5-BE90-A2230F0772C2"
},
{
"criteria": "cpe:2.3:a:wordpress_mobile_pack_project:wordpress_mobile_pack:1.2.0:b2:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "276E1165-2B5A-48C9-B531-6B5234218037"
},
{
"criteria": "cpe:2.3:a:wpmobilepack:wordpress_mobile_pack:1.0.8223:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "FB60A4D2-A776-42A6-8AE6-788D8D0DA8EA"
},
{
"criteria": "cpe:2.3:a:wpmobilepack:wordpress_mobile_pack:1.1.1:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "5907D0D5-D160-4AE9-8DBD-0D48ECF06FCC"
},
{
"criteria": "cpe:2.3:a:wpmobilepack:wordpress_mobile_pack:1.1.2:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "FE9DD3FC-F06B-4B46-A1D8-83A6447919A3"
},
{
"criteria": "cpe:2.3:a:wpmobilepack:wordpress_mobile_pack:1.1.3:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "4ADFFC5D-9C60-40D7-B3A7-E19B52262227"
},
{
"criteria": "cpe:2.3:a:wpmobilepack:wordpress_mobile_pack:1.1.9:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "92964F06-6BD9-4C99-84B4-82DD621D3875"
},
{
"criteria": "cpe:2.3:a:wpmobilepack:wordpress_mobile_pack:1.1.91:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "518DDAA6-0C6E-473F-BDC7-F7B3DC18F2D4"
},
{
"criteria": "cpe:2.3:a:wpmobilepack:wordpress_mobile_pack:1.1.92:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "FB8A85F7-388A-477E-930B-4F2C1756BF9D"
},
{
"criteria": "cpe:2.3:a:wpmobilepack:wordpress_mobile_pack:1.2.1:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "1651AC7B-4ECA-4F26-85FB-0B1EE4C1FDF9"
},
{
"criteria": "cpe:2.3:a:wpmobilepack:wordpress_mobile_pack:1.2.3:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "75A8B3EC-E9AC-4765-9B66-ECE7987C0C26"
},
{
"criteria": "cpe:2.3:a:wpmobilepack:wordpress_mobile_pack:1.2.4:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "AE63A1AE-BE24-49D1-B72E-2780E4111F4D"
},
{
"criteria": "cpe:2.3:a:wpmobilepack:wordpress_mobile_pack:1.2.5:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "47D24AAA-CC3D-4611-91DD-A7680303EFF8"
},
{
"criteria": "cpe:2.3:a:wpmobilepack:wordpress_mobile_pack:2.0:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "EAD0E689-0205-4C2B-AC4D-22BE96AA03CD"
}
],
"operator": "OR"
}
]
}
]