Multiple Security Bypass Vulnerabilities in WordPress Portable phpMyAdmin Plugin
CVE-2013-4454

9.1CRITICAL

Key Information:

Vendor: Wordpress
Status: Portable PHPmyadmin Plugin
Vendor: CVE Published:; 18 February 2020

What is CVE-2013-4454?

The Portable phpMyAdmin Plugin for WordPress version 1.4.1 is exposed to several security bypass vulnerabilities that could allow attackers to gain unauthorized access to sensitive data or functionality. These vulnerabilities arise from insufficient validation of user input, potentially enabling an attacker to manipulate requests and circumvent authentication mechanisms. It is crucial for users of this plugin to apply patches or updates to mitigate the associated risks.

Affected Version(s)

Portable phpMyAdmin Plugin 1.4.1

References

http://www.securityfocus.com/bid/63249

x_refsource_MISC

http://www.openwall.com/lists/oss-security/2013/10/22/3

x_refsource_MISC

http://www.openwall.com/lists/oss-security/2013/10/22/9

x_refsource_MISC

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 18, 2020
Vulnerability Reserved
Jun 12, 2013

Wordpress

What is CVE-2013-4454?

Affected Version(s)

References

CVSS V3.1

Timeline