CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-9489

The ThemeMakers Goodnex Premium Responsive theme through 2015-05-15 for WordPress allows remote attackers to obtain sensitive information (such as user_login, user_pass, and user_email values) via a direct request for the wp-content/uploads/tmm_db_migrate/wp_users.dat URI.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 72.7%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://packetstormsecurity.com/files/131957/
https://packetstormsecurity.com/files/131957/

Products affected by CVE-2015-9489

Goodnex Premium Responsive Project » Goodnex Premium Responsive » Version: N/A

cpe:2.3:a:goodnex_premium_responsive_project:goodnex_premium_responsive:-
Goodnex Premium Responsive Project » Goodnex Premium Responsive » Version: 2015-05-15

cpe:2.3:a:goodnex_premium_responsive_project:goodnex_premium_responsive:2015-05-15

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-9489

Products

Pricing

Contact Us