Lucene search
Copyright (C) 2015 Greenbone AGOPENVAS:1361412562310869867HistoryAug 14, 2015 - 12:00 a.m.
Fedora Update for wordpress FEDORA-2015-12235
2015-08-1400:00:00
Copyright (C) 2015 Greenbone AG
plugins.openvas.org
11
5.7 Medium
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.013 Low
EPSS
Percentile
85.9%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2015 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.869867");
script_version("2023-06-22T10:34:15+0000");
script_tag(name:"last_modification", value:"2023-06-22 10:34:15 +0000 (Thu, 22 Jun 2023)");
script_tag(name:"creation_date", value:"2015-08-14 05:33:10 +0200 (Fri, 14 Aug 2015)");
script_cve_id("CVE-2015-5622", "CVE-2015-5623", "CVE-2015-2213", "CVE-2015-5730",
"CVE-2015-5731", "CVE-2015-5732", "CVE-2015-5733", "CVE-2015-5734");
script_tag(name:"cvss_base", value:"7.5");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_tag(name:"qod_type", value:"package");
script_name("Fedora Update for wordpress FEDORA-2015-12235");
script_tag(name:"summary", value:"The remote host is missing an update for the 'wordpress'
package(s) announced via the referenced advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"affected", value:"wordpress on Fedora 22");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_xref(name:"FEDORA", value:"2015-12235");
script_xref(name:"URL", value:"https://lists.fedoraproject.org/pipermail/package-announce/2015-August/163732.html");
script_tag(name:"solution_type", value:"VendorFix");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2015 Greenbone AG");
script_family("Fedora Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms", re:"ssh/login/release=FC22");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
if(release == "FC22")
{
if ((res = isrpmvuln(pkg:"wordpress", rpm:"wordpress~4.2.4~1.fc22", rls:"FC22")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99);
exit(0);
}
Related
nessus
nessus
Fedora 22 : wordpress-4.2.4-1.fc22 (2015-12235)
2015-08-14 00:00:00
Fedora 21 : wordpress-4.2.4-1.fc21 (2015-12148)
2015-08-14 00:00:00
Debian DSA-3332-1 : wordpress - security update
2015-08-13 00:00:00
openvas
openvas
Fedora Update for wordpress FEDORA-2015-12148
2015-08-14 00:00:00
Debian: Security Advisory (DSA-3332-1)
2015-08-10 00:00:00
Mageia: Security Advisory (MGASA-2015-0309)
2022-01-28 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: wordpress-4.2.4-1.fc22
2015-08-13 16:57:53
[SECURITY] Fedora 21 Update: wordpress-4.2.4-1.fc21
2015-08-13 16:54:48
[SECURITY] Fedora 23 Update: wordpress-4.2.4-1.fc23
2015-08-10 10:04:17
osv
osv
wordpress - security update
2015-08-11 00:00:00
wordpress - regression update
2015-08-11 00:00:00
wordpress - security update
2015-08-19 00:00:00
archlinux
archlinux
wordpress: multiple issues
2015-08-07 00:00:00
freebsd
freebsd
wordpress -- Multiple vulnerability
2015-08-04 00:00:00
wordpress -- XSS vulnerability
2015-07-23 00:00:00
mageia
mageia
Updated wordpress package fixes security vulnerability
2015-08-10 17:31:41
Updated wordpress package fixes security vulnerabilities
2015-07-27 21:54:19
debian
debian
[SECURITY] [DLA 294-1] wordpress security update
2015-08-19 12:58:59
[SECURITY] [DSA 3332-1] wordpress security update
2015-08-11 19:55:16
[SECURITY] [DSA 3383-1] wordpress security update
2015-10-29 20:02:31
securityvulns
securityvulns
[SECURITY] [DSA 3332-1] wordpress security update
2015-08-24 00:00:00
WiFi Pineapple protection bypass
2015-08-24 00:00:00
wpvulndb
wpvulndb
WordPress <= 4.2.2 - Authenticated Stored Cross-Site Scripting (XSS)
2015-07-23 00:00:00
WordPress <= 4.2.3 - Legacy Theme Preview Cross-Site Scripting (XSS)
2015-08-05 00:00:00
WordPress <= 4.2.3 - Nav Menu Title Cross-Site Scripting (XSS)
2015-08-05 00:00:00
wpexploit
wpexploit
WordPress <= 4.2.2 - Authenticated Stored Cross-Site Scripting (XSS)
2015-07-23 00:00:00
patchstack
patchstack
WordPress <= 4.2.2 - XSS
2015-07-23 00:00:00
WordPress Legacy Theme <= 4.2.3 - XSS
2015-08-04 00:00:00
WordPress <= 4.2.3 - XSS #1
2015-08-04 00:00:00
cve
cve
prion
prion
Cross site scripting
2015-08-03 14:59:00
Design/Logic Flaw
2015-08-03 14:59:00
Cross site request forgery (csrf)
2015-11-09 11:59:00
hackerone
hackerone
Automattic: [bbPress] Stored XSS in any forum post.
2016-07-13 12:38:02
veracode
veracode
Bypass Access Restrictions
2017-07-28 10:45:49
Cross-Site Scripting (XSS)
2017-07-28 03:59:27
Cross-Site Request Forgery (CSRF)
2017-07-28 05:09:27
ubuntucve
ubuntucve
debiancve
debiancve
checkpoint_advisories
checkpoint_advisories
WordPress Comment SQL Injection (CVE-2015-2213)
2015-07-28 00:00:00
WordPress post Request Privilege Escalation (CVE-2015-2212; CVE-2015-5623)
2015-07-28 00:00:00
5.7 Medium
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.013 Low
EPSS
Percentile
85.9%
Related for OPENVAS:1361412562310869867