Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2013-4338HistorySep 12, 2013 - 1:28 p.m.
CVE-2013-4338
2013-09-1213:28:37
Debian Security Bug Tracker
security-tracker.debian.org
10
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.106 Low
EPSS
Percentile
95.1%
wp-includes/functions.php in WordPress before 3.6.1 does not properly determine whether data has been serialized, which allows remote attackers to execute arbitrary code by triggering erroneous PHP unserialize operations.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | wordpress | <Β 3.6.1+dfsg-1 | wordpress_3.6.1+dfsg-1_all.deb |
| Debian | 11 | all | wordpress | <Β 3.6.1+dfsg-1 | wordpress_3.6.1+dfsg-1_all.deb |
| Debian | 999 | all | wordpress | <Β 3.6.1+dfsg-1 | wordpress_3.6.1+dfsg-1_all.deb |
| Debian | 13 | all | wordpress | <Β 3.6.1+dfsg-1 | wordpress_3.6.1+dfsg-1_all.deb |
Related
wpvulndb
wpvulndb
WordPress 3.6 - PHP Object Injection
2013-09-11 00:00:00
patchstack
patchstack
WordPress <= 3.6.0 - Arbitrary Code Execution
2013-06-12 00:00:00
nvd
nvd
CVE-2013-4338
2013-09-12 13:28:37
cvelist
cvelist
CVE-2013-4338
2013-09-12 10:00:00
prion
prion
Code injection
2013-09-12 13:28:00
cve
cve
CVE-2013-4338
2013-09-12 13:28:37
seebug
seebug
WordPress 'is_serialized()'θΏη¨δ»»ζ代η ζ§θ‘ζΌζ΄(CVE-2013-4338)
2013-09-16 00:00:00
ubuntucve
ubuntucve
CVE-2013-4338
2013-09-12 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: wordpress-3.6.1-1.fc20
2013-09-26 06:04:23
[SECURITY] Fedora 19 Update: wordpress-3.6.1-1.fc19
2013-09-26 06:04:43
[SECURITY] Fedora 19 Update: wordpress-3.8.3-1.fc19
2014-04-24 07:28:27
nessus
nessus
Fedora 18 : wordpress-3.6.1-1.fc18 (2013-16895)
2013-09-27 00:00:00
Fedora 20 : wordpress-3.6.1-1.fc20 (2013-16855)
2013-09-27 00:00:00
Fedora 19 : wordpress-3.6.1-1.fc19 (2013-16925)
2013-09-27 00:00:00
openvas
openvas
Debian Security Advisory DSA 2757-1 (wordpress - several vulnerabilities)
2013-09-14 00:00:00
Debian: Security Advisory (DSA-2757-1)
2013-09-13 00:00:00
Mageia: Security Advisory (MGASA-2013-0285)
2022-01-28 00:00:00
debian
debian
[SECURITY] [DSA 2757-1] wordpress security update
2013-09-14 09:13:38
securityvulns
securityvulns
[ MDVSA-2013:239 ] wordpress
2013-10-02 00:00:00
osv
osv
wordpress - several
2013-09-14 00:00:00
freebsd
freebsd
wordpress -- multiple vulnerabilities
2013-09-11 00:00:00
mageia
mageia
Updated wordpress and php-phpmailer packages fix security vulnerabilities
2013-09-19 13:45:04
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.106 Low
EPSS
Percentile
95.1%
Related for DEBIANCVE:CVE-2013-4338