Lucene search
N/APATCHSTACK:EF873F9595E4D1E1DBDCFFB1D2E54376HistoryJul 01, 2005 - 12:00 a.m.
WordPress <= 1.5.1.2 - SQL injection
2005-07-0100:00:00
N/A
patchstack.com
8
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Because of this vulnerability in XMLRPC server, attackers can execute arbitrary SQL commands via input that is not filtered in the HTTP_RAW_POST_DATA variable, which stores the data in an XML file.
Solution
Update the WordPress to the latest available version (at least 1.5.1.3).
Related
nessus
nessus
WordPress < 1.5.1.3 XMLRPC SQL Injection
2005-07-01 00:00:00
cve
cve
CVE-2005-2108
2005-07-05 04:00:00
debiancve
debiancve
CVE-2005-2108
2005-07-05 04:00:00
wpvulndb
wpvulndb
WordPress <= 1.5.1.2 - XMLRPC SQL Injection
2015-02-03 00:00:00
ubuntucve
ubuntucve
CVE-2005-2108
2005-07-05 00:00:00
openvas
openvas
FreeBSD Ports: wordpress
2008-09-04 00:00:00
FreeBSD Ports: wordpress
2008-09-04 00:00:00
freebsd
freebsd
wordpress -- multiple vulnerabilities
2005-06-28 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related for PATCHSTACK:EF873F9595E4D1E1DBDCFFB1D2E54376