Fedora: Security Advisory for wordpress (FEDORA-2022-8472dd59ff)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for wordpress (FEDORA-2022-e37e1e6c7a)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Debian DSA-5039-1 : wordpress - security update

The remote Debian 10 / 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5039 advisory. Several vulnerabilities were discovered in Wordpress, a web blogging tool. They allowed remote attackers to perform SQL injection, run unchecked SQL queries,...

WordPress fixes multiple security vulnerabilities

THREAT LEVEL: Amber. For a detailed advisory, download the pdf file here. WordPress development team has released the security update to patch the following four vulnerabilities out of which three of them have high severity. CVE-2022-21661: A vulnerability exists in WPQuery class which is caused...

CVE-2022-21663

creationtimestamp| type| source ---|---|--- 2022-01-07 02:16:25+00:00| seen| https://t.me/cibsecurity/35090 2022-02-12 13:52:55+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/5399 2023-08-25 16:32:19+00:00| seen| https://t.me/breachdetector/323573 2025-04-22...

CVE-2022-21663 Authenticated Object Injection in Multisites in WordPress

WordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. On a multisite, users with Super Admin role can bypass explicit/additional hardening under certain conditions through object injection. This has been patched in WordPress version 5.8.3...

WordPress 5.8 < 5.8.3 / 5.7 < 5.7.5 / 5.6 < 5.6.7 / 5.5 < 5.5.8 / 5.4 < 5.4.9 / 5.3 < 5.3.11 / 5.2 < 5.2.14 / 5.1 < 5.1.12 / 5.0 < 5.0.15 / 4.9 < 4.9.19 / 4.8 < 4.8.18 / 4.7 < 4.7.22 / 4.6 < 4.6.22 / 4.5 < 4.5.25 / 4.4 < 4.4.26 / 4.3 < 4.3.27 / 4.2 < 4.2.31 / 4.1 < 4.1.34 / 4.0 < 4.0.34 / 3.9 < 3.9.35 / 3.8 < 3.8.37 / 3.7 < 3.7.37

WordPress versions 5.8 5.8.3 / 5.7 5.7.5 / 5.6 5.6.7 / 5.5 5.5.8 / 5.4 5.4.9 / 5.3 5.3.11 / 5.2 5.2.14 / 5.1 5.1.12 / 5.0 5.0.15 / 4.9 4.9.19 / 4.8 4.8.18 / 4.7 4.7.22 / 4.6 4.6.22 / 4.5 4.5.25 / 4.4 4.4.26 / 4.3 4.3.27 / 4.2 4.2.31 / 4.1 4.1.34 / 4.0 4.0.34 / 3.9 3.9.35 / 3.8 3.8.37 / 3.7 3.7.37...