Lucene search
Sam ThomasPATCHSTACK:8A45BFFBCA5FF1B4A7C75A0A1A3D5E79HistoryMay 16, 2017 - 12:00 a.m.
WordPress <=4.7.4 - Post Meta Data Values Improper Handling in XML-RPC API
2017-05-1600:00:00
Sam Thomas
patchstack.com
8
0.006 Low
EPSS
Percentile
78.9%
WordPress versions starting from 2.5 to 4.7.4 have the improper handling of post meta data values in the XML-RPC (Remote Procedure Call) API. Discovered and reported by Sam Thomas.
Solution
Update WordPress core to the latest possible version (at least 4.7.5)
Related
cve
cve
CVE-2017-9062
2017-05-18 14:29:00
wpvulndb
wpvulndb
WordPress 2.5.0-4.7.4 - Post Meta Data Values Improper Handling in XML-RPC
2017-05-16 00:00:00
prion
prion
Input validation
2017-05-18 14:29:00
ubuntucve
ubuntucve
CVE-2017-9062
2017-05-18 00:00:00
debiancve
debiancve
CVE-2017-9062
2017-05-18 14:29:00
osv
osv
CVE-2017-9062
2017-05-18 14:29:00
wordpress - security update
2017-06-01 00:00:00
wordpress - security update
2017-06-02 00:00:00
cvelist
cvelist
CVE-2017-9062
2017-05-18 14:00:00
nvd
nvd
CVE-2017-9062
2017-05-18 14:29:00
nessus
nessus
WordPress < 4.7.5 Multiple Vulnerabilities
2017-05-23 00:00:00
WordPress 3.9.x < 3.9.19 Multiple Vulnerabilities
2018-11-05 00:00:00
WordPress 4.0.x < 4.0.18 Multiple Vulnerabilities
2018-11-05 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-975-1)
2018-01-28 00:00:00
WordPress < 4.7.5 Multiple Security Vulnerabilities - Linux
2017-05-22 00:00:00
WordPress < 4.7.5 Multiple Security Vulnerabilities - Windows
2017-05-22 00:00:00
debian
debian
[SECURITY] [DSA 3870-1] wordpress security update
2017-06-01 05:31:44
[SECURITY] [DLA 975-1] wordpress security update
2017-06-02 12:47:52
[SECURITY] [DSA 3870-1] wordpress security update
2017-06-01 05:31:44