Lucene search
K

7 matches found

Debian
Debian
added 2018/01/17 1:40 p.m.26 views

[SECURITY] [DSA 4090-1] wordpress security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4090-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 17, 2018 https://www.debian.org/security/faq -...

9.8CVSS8.9AI score0.08204EPSS
Exploits0
Debian
Debian
added 2018/01/17 1:40 p.m.29 views

[SECURITY] [DSA 4090-1] wordpress security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4090-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 17, 2018 https://www.debian.org/security/faq -...

7.5CVSS2.8AI score0.08204EPSS
Exploits0
CVE
CVE
added 2017/11/13 9:0 a.m.46 views

CVE-2017-0908

CVE-2017-0908 is a reservation duplicate and is not an active vulnerability entry; use CVE-2017-16510.

9.5AI score
Exploits0
NVD
NVD
added 2017/11/02 4:29 p.m.21 views

CVE-2017-16510

WordPress before 4.8.3 is affected by an issue where $wpdb-prepare can create unexpected and unsafe queries leading to potential SQL injection SQLi in plugins and themes, as demonstrated by a "double prepare" approach, a different vulnerability than CVE-2017-14723...

9.8CVSS9.8AI score0.07744EPSS
Exploits0References8
OSV
OSV
added 2017/11/02 4:29 p.m.34 views

CVE-2017-16510

WordPress before 4.8.3 is affected by an issue where $wpdb-prepare can create unexpected and unsafe queries leading to potential SQL injection SQLi in plugins and themes, as demonstrated by a "double prepare" approach, a different vulnerability than CVE-2017-14723...

9.8CVSS9.8AI score
Exploits0References8
Cvelist
Cvelist
added 2017/11/02 4:0 p.m.31 views

CVE-2017-16510

WordPress before 4.8.3 is affected by an issue where $wpdb-prepare can create unexpected and unsafe queries leading to potential SQL injection SQLi in plugins and themes, as demonstrated by a "double prepare" approach, a different vulnerability than CVE-2017-14723...

9.8AI score0.07744EPSS
Exploits0References8
CVE
CVE
added 2017/11/02 4:0 p.m.233 views

CVE-2017-16510

CVE-2017-16510 is tied to WordPress prior to 4.8.3, where a flaw in $wpdb->prepare() can produce unsafe/unexpected queries via a double prepare approach, enabling SQL injection in plugins/themes. The vulnerability is distinct from CVE-2017-14723 and is documented in public advisories and Nessu...

9.8CVSS9.6AI score0.07744EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder