Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD049332D2-F6E1-11E2-82F3-000C29EE3065
HistoryJun 21, 2013 - 12:00 a.m.

wordpress -- multiple vulnerabilities

2013-06-2100:00:00
vuxml.freebsd.org
9

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.006 Low

EPSS

Percentile

77.9%

JSON

The wordpress development team reports:

Blocking server-side request forgery attacks, which could
potentially enable an attacker to gain access to a site
Disallow contributors from improperly publishing posts
An update to the SWFUpload external library to fix cross-site
scripting vulnerabilities
Prevention of a denial of service attack, affecting sites
using password-protected posts
An update to an external TinyMCE library to fix a cross-site
scripting vulnerability
Multiple fixes for cross-site scripting
Avoid disclosing a full file path when a upload fails

Related

nessus 8
securityvulns 2
openvas 15
fedora 8
debian 1
mageia 1
osv 1
prion 7
ubuntucve 7
patchstack 8
cve 7
debiancve 7
wpvulndb 3
nessus
nessus
FreeBSD : wordpress -- multiple vulnerabilities (049332d2-f6e1-11e2-82f3-000c29ee3065)
2013-07-28 00:00:00
Fedora 17 : wordpress-3.5.2-1.fc17 (2013-11649)
2013-07-12 00:00:00
Fedora 19 : wordpress-3.5.2-1.fc19 (2013-11590)
2013-07-12 00:00:00
securityvulns
securityvulns
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2013-07-08 00:00:00
[SECURITY] [DSA 2718-1] wordpress security update
2013-07-08 00:00:00
openvas
openvas
Fedora Update for wordpress FEDORA-2013-11590
2013-08-20 00:00:00
Fedora Update for wordpress FEDORA-2013-11590
2013-08-20 00:00:00
Debian: Security Advisory (DSA-2718-1)
2013-06-30 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: wordpress-3.5.2-1.fc19
2013-07-03 01:36:05
[SECURITY] Fedora 18 Update: wordpress-3.5.2-1.fc18
2013-07-03 01:37:44
[SECURITY] Fedora 19 Update: wordpress-3.6.1-1.fc19
2013-09-26 06:04:43
debian
debian
[SECURITY] [DSA 2718-1] wordpress security update
2013-07-02 19:50:33
mageia
mageia
Updated wordpress package fixes security vulnerabilities
2013-07-01 23:19:24
osv
osv
wordpress - several
2013-07-01 00:00:00
prion
prion
Cross site scripting
2013-07-08 20:55:00
Spoofing
2013-07-08 20:55:00
Design/Logic Flaw
2013-07-08 20:55:00
ubuntucve
ubuntucve
CVE-2013-2205
2013-07-08 00:00:00
CVE-2013-2204
2013-07-08 00:00:00
CVE-2013-2203
2013-07-08 00:00:00
patchstack
patchstack
WordPress SWFUpload Plugin <= 3.5.1 - XSS
2013-02-19 00:00:00
WordPress <= 3.5.1 - Multiple SSRF
2013-02-19 00:00:00
WordPress <= 3.5.1 - External Entity Injection
2013-02-19 00:00:00
cve
cve
CVE-2013-2205
2013-07-08 20:55:00
CVE-2013-2204
2013-07-08 20:55:00
CVE-2013-2202
2013-07-08 20:55:00
debiancve
debiancve
CVE-2013-2205
2013-07-08 20:55:00
CVE-2013-2203
2013-07-08 20:55:00
CVE-2013-2204
2013-07-08 20:55:00
wpvulndb
wpvulndb
WordPress 3.5-3.5.1 oEmbed Unspecified XML External Entity (XXE)
2013-06-21 00:00:00
WordPress 3.5.1 - Multiple Cross-Site Scripting (XSS)
2013-06-21 00:00:00
WordPress 3.5-3.5.1 Multiple Role Remote Privilege Escalation
2013-06-21 00:00:00

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.006 Low

EPSS

Percentile

77.9%

JSON
Related for 049332D2-F6E1-11E2-82F3-000C29EE3065
nessus8securityvulns2openvas15fedora8debian1mageia1osv1prion7ubuntucve7patchstack8cve7debiancve7wpvulndb3