Lucene search
HistoryJan 02, 2013 - 11:46 a.m.
CVE-2013-0721
cve-2013-0721
wp php widget
wordpress
vulnerability
information disclosure
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.5 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
71.2%
wp-php-widget.php in the WP PHP widget plugin 1.0.2 for WordPress allows remote attackers to obtain sensitive information via a direct request, which reveals the full path in an error message.
Affected configurations
Node
wp_php_widget_projectwp_php_widgetMatch1.0.2
wordpresswordpressMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| wp_php_widget_project:wp_php_widget | wp php widget project wp php widget | eq | 1.0.2 |
Related
prion
prion
Information disclosure
2013-01-02 11:46:00
cvelist
cvelist
CVE-2013-0721
2013-01-02 11:00:00
patchstack
patchstack
WordPress WP PHP Widget Plugin <= 1.0.2 - Full Path Disclosure
2013-01-02 00:00:00
nvd
nvd
CVE-2013-0721
2013-01-02 11:46:23
wpvulndb
wpvulndb
WP PHP Widget 1.0.2 - Full Path Disclosure
2014-08-01 10:59:16
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.5 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
71.2%
Related for CVE-2013-0721