Lucene search
HistoryJan 21, 2014 - 1:55 a.m.
CVE-2010-5293
nvd
cve-2010-5293
wordpress
trackbacks
pingbacks
spam restrictions
url
security vulnerability
6.6 Medium
AI Score
Confidence
Low
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.002 Low
EPSS
Percentile
56.8%
wp-includes/comment.php in WordPress before 3.0.2 does not properly whitelist trackbacks and pingbacks in the blogroll, which allows remote attackers to bypass intended spam restrictions via a crafted URL, as demonstrated by a URL that triggers a substring match.
Related
prion
prion
Design/Logic Flaw
2014-01-21 01:55:00
ubuntucve
ubuntucve
CVE-2010-5293
2014-01-21 00:00:00
patchstack
patchstack
WordPress <= 3.0.1
2014-01-20 00:00:00
wpvulndb
wpvulndb
WordPress 2.0 - 3.0.1 wp-includes/comment.php Bypass Spam Restrictions
2014-08-01 10:58:24
debiancve
debiancve
CVE-2010-5293
2014-01-21 01:55:00
openvas
openvas
WordPress < 3.0.2 Multiple Vulnerabilities
2022-12-08 00:00:00
nessus
nessus
WordPress < 3.0.2 Multiple Vulnerabilities
2011-02-03 00:00:00
WordPress < 3.0.2 Multiple Vulnerabilities
2016-02-26 00:00:00
6.6 Medium
AI Score
Confidence
Low
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.002 Low
EPSS
Percentile
56.8%
Related for CVE-2010-5293