Lucene search

Redhat.comRH:CVE-2007-4139

HistoryOct 04, 2019 - 8:47 p.m.

CVE-2007-4139

2019-10-0420:47:30

redhat.com

access.redhat.com

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.9 Medium

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.8%

JSON

Cross-site scripting (XSS) vulnerability in the Temporary Uploads editing functionality (wp-admin/includes/upload.php) in WordPress 2.2.1, allows remote attackers to inject arbitrary web script or HTML via the style parameter to wp-admin/upload.php.

References

bugzilla.redhat.com/show_bug.cgi?id=250751

nvd.nist.gov/vuln/detail/CVE-2007-4139

www.cve.org/CVERecord?id=CVE-2007-4139

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.9 Medium

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.8%

JSON

Related for RH:CVE-2007-4139