Bugtraq: CVE-2014-8877 – Code Injection in WordPress CM Download Manager plugin