Lucene search
PRIOn knowledge basePRION:CVE-2008-2146HistoryMay 12, 2008 - 8:20 p.m.
Design/Logic Flaw
2008-05-1220:20:00
PRIOn knowledge base
www.prio-n.com
1
7.2 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.009 Low
EPSS
Percentile
82.3%
wp-includes/vars.php in Wordpress before 2.2.3 does not properly extract the current path from the PATH_INFO ($PHP_SELF), which allows remote attackers to bypass intended access restrictions for certain pages.
Related
cve
cve
CVE-2008-2146
2008-05-12 20:20:00
debiancve
debiancve
CVE-2008-2146
2008-05-12 20:20:00
ubuntucve
ubuntucve
CVE-2008-2146
2008-05-12 00:00:00
patchstack
patchstack
WordPress <= 2.2.2 - BYPASS
2008-05-12 00:00:00
cvelist
cvelist
CVE-2008-2146
2008-05-12 20:00:00
osv
osv
wordpress - several vulnerabilities
2008-05-01 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-1564-1)
2008-05-12 00:00:00
7.2 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.009 Low
EPSS
Percentile
82.3%
Related for PRION:CVE-2008-2146