Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2013-2202HistoryJul 08, 2013 - 8:55 p.m.
CVE-2013-2202
2013-07-0820:55:01
Debian Security Bug Tracker
security-tracker.debian.org
15
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.004 Low
EPSS
Percentile
72.2%
WordPress before 3.5.2 allows remote attackers to read arbitrary files via an oEmbed XML provider response containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | wordpress | < 3.5.2+dfsg-1 | wordpress_3.5.2+dfsg-1_all.deb |
| Debian | 11 | all | wordpress | < 3.5.2+dfsg-1 | wordpress_3.5.2+dfsg-1_all.deb |
| Debian | 10 | all | wordpress | < 3.5.2+dfsg-1 | wordpress_3.5.2+dfsg-1_all.deb |
| Debian | 999 | all | wordpress | < 3.5.2+dfsg-1 | wordpress_3.5.2+dfsg-1_all.deb |
| Debian | 13 | all | wordpress | < 3.5.2+dfsg-1 | wordpress_3.5.2+dfsg-1_all.deb |
Related
patchstack
patchstack
WordPress <= 3.5.1 - External Entity Injection
2013-02-19 00:00:00
cve
cve
CVE-2013-2202
2013-07-08 20:55:01
ubuntucve
ubuntucve
CVE-2013-2202
2013-07-08 00:00:00
prion
prion
Xxe
2013-07-08 20:55:00
wpvulndb
wpvulndb
WordPress 3.5-3.5.1 oEmbed Unspecified XML External Entity (XXE)
2013-06-21 00:00:00
cvelist
cvelist
CVE-2013-2202
2013-07-08 20:00:00
nvd
nvd
CVE-2013-2202
2013-07-08 20:55:01
freebsd
freebsd
wordpress -- multiple vulnerabilities
2013-06-21 00:00:00
nessus
nessus
FreeBSD : wordpress -- multiple vulnerabilities (049332d2-f6e1-11e2-82f3-000c29ee3065)
2013-07-28 00:00:00
Fedora 19 : wordpress-3.5.2-1.fc19 (2013-11590)
2013-07-12 00:00:00
Fedora 17 : wordpress-3.5.2-1.fc17 (2013-11649)
2013-07-12 00:00:00
openvas
openvas
Fedora Update for wordpress FEDORA-2013-11590
2013-08-20 00:00:00
Fedora Update for wordpress FEDORA-2013-11590
2013-08-20 00:00:00
Debian: Security Advisory (DSA-2718-1)
2013-06-30 00:00:00
securityvulns
securityvulns
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2013-07-08 00:00:00
[SECURITY] [DSA 2718-1] wordpress security update
2013-07-08 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: wordpress-3.5.2-1.fc19
2013-07-03 01:36:05
[SECURITY] Fedora 19 Update: wordpress-3.6.1-1.fc19
2013-09-26 06:04:43
[SECURITY] Fedora 18 Update: wordpress-3.5.2-1.fc18
2013-07-03 01:37:44
debian
debian
[SECURITY] [DSA 2718-1] wordpress security update
2013-07-02 19:50:33
osv
osv
wordpress - several
2013-07-01 00:00:00
mageia
mageia
Updated wordpress package fixes security vulnerabilities
2013-07-01 23:19:24
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.004 Low
EPSS
Percentile
72.2%
Related for DEBIANCVE:CVE-2013-2202