CVE-2018-20152

🗓️ 14 Dec 2018 20:00:00Reported by mitreType

cve

cve🔗 web.nvd.nist.gov👁 221 Views

WordPress CVE-2018-20152 bypasses post type restrictions

Reporter	Title	Published	Views	Family All 38
CNVD	WordPress Post Type Restriction Bypass Vulnerability	17 Dec 201800:00	–	cnvd
Cvelist	CVE-2018-20152	14 Dec 201820:00	–	cvelist
Debian	[SECURITY] [DLA 1673-1] wordpress security update	11 Feb 201923:24	–	debian
Debian	[SECURITY] [DSA 4401-1] wordpress security update	1 Mar 201907:03	–	debian
Debian	[SECURITY] [DSA 4401-1] wordpress security update	1 Mar 201907:03	–	debian
Debian CVE	CVE-2018-20152	14 Dec 201820:00	–	debiancve
Tenable Nessus	Debian DLA-1673-1 : wordpress security update	12 Feb 201900:00	–	nessus
Tenable Nessus	Debian DSA-4401-1 : wordpress - security update	4 Mar 201900:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2018-20152	30 Aug 202500:00	–	nessus
Tenable Nessus	WordPress 5.0.x < 5.0.1 Multiple Vulnerabilities	17 Dec 201800:00	–	nessus

NVD

Node

wordpress wordpressRange<4.9.9

OR

wordpress wordpressRange5.0–5.0.1

Node

debian debian_linuxMatch8.0

OR

debian debian_linuxMatch9.0

Source	Link
wordpress	www.wordpress.org/news/2018/12/wordpress-5-0-1-security-release/
wordpress	www.wordpress.org/support/wordpress-version/version-5-0-1/
debian	www.debian.org/security/2019/dsa-4401
lists	www.lists.debian.org/debian-lts-announce/2019/02/msg00019.html
wpvulndb	www.wpvulndb.com/vulnerabilities/9170
zdnet	www.zdnet.com/article/wordpress-plugs-bug-that-led-to-google-indexing-some-user-passwords/
codex	www.codex.wordpress.org/Version_4.9.9
securityfocus	www.securityfocus.com/bid/106220

21 Nov 2024 04:00Current

7.7High risk

Vulners AI Score7.7

CVSS 24

CVSS 36.5

EPSS0.11676

wordpress cve 2018 20152 security bypass post type restrictions nvd