Lucene search

[email protected]CVE-2012-6512

HistoryJan 24, 2013 - 1:55 a.m.

CVE-2012-6512

2013-01-2401:55:05

CWE-200

[email protected]

web.nvd.nist.gov

cve-2012-6512

wordpress

organizer plugin

remote attackers

security vulnerability

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.9 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

70.9%

JSON

The Organizer plugin 1.2.1 for WordPress allows remote attackers to obtain the installation path via unspecified vectors to (1) plugin_hook.php, (2) page/index.php, (3) page/dir.php (4) page/options.php, (5) page/resize.php, (6) page/upload.php, (7) page/users.php, or (8) page/view.php.

Affected configurations

NVD

Node

organizer_projectorganizerRange≤1.2.1wordpress

CPENameOperatorVersion
organizer_project:organizerorganizer project organizerle1.2.1

CPE	Name	Operator	Version
organizer_project:organizer	organizer project organizer	le	1.2.1

References

packetstormsecurity.org/files/112086/WordPress-Organizer-1.2.1-Cross-Site-Scripting-Path-Disclosure.html

websecurity.com.ua/5782

exchange.xforce.ibmcloud.com/vulnerabilities/75107

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.9 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

70.9%

JSON

Related for CVE-2012-6512

patchstack1 prion1 nvd1 cvelist1 wpvulndb1