Lucene search

[email protected]NVD:CVE-2008-0664

HistoryFeb 08, 2008 - 2:00 a.m.

CVE-2008-0664

2008-02-0802:00:00

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

AI Score

6.4

Confidence

Low

EPSS

0.007

Percentile

81.0%

JSON

The XML-RPC implementation (xmlrpc.php) in WordPress before 2.3.3, when registration is enabled, allows remote attackers to edit posts of other blog users via unknown vectors.

Affected configurations

Nvd

Node

wordpresswordpressMatch0.7

wordpresswordpressMatch0.71

wordpresswordpressMatch1.2

wordpresswordpressMatch1.2.1

wordpresswordpressMatch1.2.2

wordpresswordpressMatch1.3.1

wordpresswordpressMatch1.5

wordpresswordpressMatch1.5.1

wordpresswordpressMatch1.5.1.2

wordpresswordpressMatch1.5.1.3

wordpresswordpressMatch1.5.2

wordpresswordpressMatch2.0

wordpresswordpressMatch2.0.1

wordpresswordpressMatch2.0.2

wordpresswordpressMatch2.0.3

wordpresswordpressMatch2.0.4

wordpresswordpressMatch2.0.5

wordpresswordpressMatch2.0.6

wordpresswordpressMatch2.0.7

wordpresswordpressMatch2.0.10

wordpresswordpressMatch2.0.10_rc1

wordpresswordpressMatch2.0.10_rc2

wordpresswordpressMatch2.0.11

wordpresswordpressMatch2.1

wordpresswordpressMatch2.1.1

wordpresswordpressMatch2.1.2

wordpresswordpressMatch2.1.3

wordpresswordpressMatch2.1.3_rc1

wordpresswordpressMatch2.1.3_rc2

wordpresswordpressMatch2.2

wordpresswordpressMatch2.2.1

wordpresswordpressMatch2.2.2

wordpresswordpressMatch2.2.3

wordpresswordpressMatch2.2_revision5002

wordpresswordpressMatch2.2_revision5003

wordpresswordpressMatch2.3

wordpresswordpressMatch2.3.1

wordpresswordpressMatch2.3.2

VendorProductVersionCPE
wordpresswordpress0.7cpe:2.3:a:wordpress:wordpress:0.7:*:*:*:*:*:*:*
wordpresswordpress0.71cpe:2.3:a:wordpress:wordpress:0.71:*:*:*:*:*:*:*
wordpresswordpress1.2cpe:2.3:a:wordpress:wordpress:1.2:*:*:*:*:*:*:*
wordpresswordpress1.2.1cpe:2.3:a:wordpress:wordpress:1.2.1:*:*:*:*:*:*:*
wordpresswordpress1.2.2cpe:2.3:a:wordpress:wordpress:1.2.2:*:*:*:*:*:*:*
wordpresswordpress1.3.1cpe:2.3:a:wordpress:wordpress:1.3.1:*:*:*:*:*:*:*
wordpresswordpress1.5cpe:2.3:a:wordpress:wordpress:1.5:*:*:*:*:*:*:*
wordpresswordpress1.5.1cpe:2.3:a:wordpress:wordpress:1.5.1:*:*:*:*:*:*:*
wordpresswordpress1.5.1.2cpe:2.3:a:wordpress:wordpress:1.5.1.2:*:*:*:*:*:*:*
wordpresswordpress1.5.1.3cpe:2.3:a:wordpress:wordpress:1.5.1.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
wordpress	wordpress	0.7	cpe:2.3:a:wordpress:wordpress:0.7:::::::*
wordpress	wordpress	0.71	cpe:2.3:a:wordpress:wordpress:0.71:::::::*
wordpress	wordpress	1.2	cpe:2.3:a:wordpress:wordpress:1.2:::::::*
wordpress	wordpress	1.2.1	cpe:2.3:a:wordpress:wordpress:1.2.1:::::::*
wordpress	wordpress	1.2.2	cpe:2.3:a:wordpress:wordpress:1.2.2:::::::*
wordpress	wordpress	1.3.1	cpe:2.3:a:wordpress:wordpress:1.3.1:::::::*
wordpress	wordpress	1.5	cpe:2.3:a:wordpress:wordpress:1.5:::::::*
wordpress	wordpress	1.5.1	cpe:2.3:a:wordpress:wordpress:1.5.1:::::::*
wordpress	wordpress	1.5.1.2	cpe:2.3:a:wordpress:wordpress:1.5.1.2:::::::*
wordpress	wordpress	1.5.1.3	cpe:2.3:a:wordpress:wordpress:1.5.1.3:::::::*