The Cimy User Manager plugin is a plugin for WordPress that was vulnerable to a security issue in versions prior to 1.4.4. Through this vulnerability, an attacker was able to access the contents of any file stored on the server, which could include sensitive information. The vulnerability was related to the ‘cimy_um_filename’ parameter.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
