Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2017-17092

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wp-includes/functions.php in WordPress before 4.9.1 does not require the unfilteredhtml capability for upload of .js files, which might allow remote attackers t...

5.4CVSS6.7AI score0.04132EPSS
Exploits0References2
Debian
Debian
added 2018/01/17 1:40 p.m.26 views

[SECURITY] [DSA 4090-1] wordpress security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4090-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 17, 2018 https://www.debian.org/security/faq -...

9.8CVSS8.9AI score0.08204EPSS
Exploits0
Debian
Debian
added 2018/01/17 1:40 p.m.29 views

[SECURITY] [DSA 4090-1] wordpress security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4090-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 17, 2018 https://www.debian.org/security/faq -...

7.5CVSS2.8AI score0.08204EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/12/26 12:0 a.m.33 views

Debian DLA-1216-1 : wordpress security update

Several vulnerabilities were discovered in wordpress, a web blogging tool. The Common Vulnerabilities and Exposures project identifies the following issues. CVE-2017-17091 wp-admin/user-new.php in WordPress sets the newbloguser key to a string that can be directly derived from the user ID, which...

8.8CVSS6.3AI score0.08204EPSS
Exploits0References6
Debian
Debian
added 2017/12/21 8:10 p.m.21 views

[SECURITY] [DLA 1216-1] wordpress security update

Package : wordpress Version : 3.6.1+dfsg-1deb7u20 CVE ID : CVE-2017-17091 CVE-2017-17092 CVE-2017-17093 CVE-2017-17094 Debian Bug : 883314 Several vulnerabilities were discovered in wordpress, a web blogging tool. The Common Vulnerabilities and Exposures project identifies the following issues...

8.8CVSS6.7AI score0.08204EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/12/04 12:0 a.m.72 views

WordPress < 4.9.1 Multiple Vulnerabilities - Linux

WordPress prior to 4.9.1 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.8CVSS6AI score0.08204EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/12/04 12:0 a.m.55 views

WordPress < 4.9.1 Multiple Vulnerabilities - Windows

WordPress prior to 4.9.1 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.8CVSS6AI score0.08204EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/12/04 12:0 a.m.65 views

WordPress < 4.9.1 Multiple Vulnerabilities

According to its self-reported version number, the WordPress application running on the remote web server is prior to 4.9.1. It is, therefore, affected by multiple vulnerabilities. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid105004; scriptversion"1.13";...

8.8CVSS6.3AI score0.08204EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2017/12/02 6:29 a.m.28 views

CVE-2017-17092

wp-includes/functions.php in WordPress before 4.9.1 does not require the unfilteredhtml capability for upload of .js files, which might allow remote attackers to conduct XSS attacks via a crafted file...

5.4CVSS6.8AI score0.04132EPSS
Exploits0References4
OSV
OSV
added 2017/12/02 6:29 a.m.25 views

CVE-2017-17092

wp-includes/functions.php in WordPress before 4.9.1 does not require the unfilteredhtml capability for upload of .js files, which might allow remote attackers to conduct XSS attacks via a crafted file...

5.4CVSS5.9AI score
Exploits0References7
Debian CVE
Debian CVE
added 2017/12/02 6:0 a.m.36 views

CVE-2017-17092

wp-includes/functions.php in WordPress before 4.9.1 does not require the unfilteredhtml capability for upload of .js files, which might allow remote attackers to conduct XSS attacks via a crafted file...

5.4CVSS6.5AI score0.04132EPSS
Exploits0
CVE
CVE
added 2017/12/02 6:0 a.m.192 views

CVE-2017-17092

WordPress

5.4CVSS6.2AI score0.04132EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder