CVE-2014-8701

Severity CVSS v4.0:
Pending analysis
Type:
CWE-200 Information Leak / Disclosure
Publication date:
17/03/2017
Last modified:
17/06/2026

Description

Wonder CMS 2014 allows remote attackers to obtain sensitive information by viewing /files/password, which reveals the unsalted MD5 hashed password.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:wondercms:wondercms:2014:*:*:*:*:*:*:*