Vulnerabilities > Imember360 > Imember360 > 3.4.018
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-05-23 | CVE-2014-3848 | Permissions, Privileges, and Access Controls vulnerability in Imember360 The iMember360 plugin before 3.9.001 for WordPress does not properly restrict access, which allows remote attackers to obtain database credentials via the i4w_dbinfo parameter. | 5.0 |