(1) wp-dbmanager.php and (2) database-manage.php in the WP-DBManager (aka Database Manager) plugin before 2.7.2 for WordPress place credentials on the mysqldump command line, which allows local users to obtain sensitive information by listing the process.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-01-05T16:00:00

Updated: 2024-08-06T13:18:47.880Z

Reserved: 2014-10-20T00:00:00

Link: CVE-2014-8335

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-01-05T16:29:00.197

Modified: 2024-11-21T02:18:53.780

Link: CVE-2014-8335

cve-icon Redhat

No data.