Skip to main content

Wp Dbmanager

2 CVEs product

Monthly

CVE-2022-2354 HIGH POC This Week

The WP-DBManager WordPress plugin before 2.80.8 does not prevent administrators from running arbitrary commands on the server in multisite installations, where only super-administrators should. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass WordPress Wp Dbmanager
NVD WPScan
CVSS 3.1
7.2
EPSS
1.0%
CVE-2014-8334 MEDIUM POC PATCH This Month

The WP-DBManager (aka Database Manager) plugin before 2.7.2 for WordPress allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) $backup['filepath'] (aka. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Command Injection WordPress Wp Dbmanager
NVD
CVSS 2.0
6.5
EPSS
4.3%
EPSS 1% CVSS 7.2
HIGH POC This Week

The WP-DBManager WordPress plugin before 2.80.8 does not prevent administrators from running arbitrary commands on the server in multisite installations, where only super-administrators should. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass WordPress Wp Dbmanager
NVD WPScan
EPSS 4% CVSS 6.5
MEDIUM POC PATCH This Month

The WP-DBManager (aka Database Manager) plugin before 2.7.2 for WordPress allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) $backup['filepath'] (aka. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Command Injection WordPress Wp Dbmanager
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy