Lucene search
K

19 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:49 a.m.4 views

SUSE CVE-2017-5611

SQL injection vulnerability in wp-includes/class-wp-query.php in WPQuery in WordPress before 4.7.2 allows remote attackers to execute arbitrary SQL commands by leveraging the presence of an affected plugin or theme that mishandles a crafted post type name...

9.8CVSS9.8AI score0.09933EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.35 views

WordPress 4.6.x < 4.6.3 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the class-wp-press-this.php script due to a failure to properly restrict the user interface for assigning taxonomy terms...

9.8CVSS9AI score0.81848EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.33 views

WordPress 4.7.x < 4.7.2 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the class-wp-press-this.php script due to a failure to properly restrict the user interface for assigning taxonomy terms...

9.8CVSS9AI score0.81848EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.38 views

WordPress 4.5.x < 4.5.6 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the class-wp-press-this.php script due to a failure to properly restrict the user interface for assigning taxonomy terms...

9.8CVSS9AI score0.81848EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.30 views

WordPress 3.7.x < 3.7.18 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the class-wp-press-this.php script due to a failure to properly restrict the user interface for assigning taxonomy terms...

9.8CVSS9AI score0.81848EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.23 views

WordPress 4.0.x < 4.0.15 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the class-wp-press-this.php script due to a failure to properly restrict the user interface for assigning taxonomy terms...

9.8CVSS9AI score0.81848EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.37 views

WordPress 3.8.x < 3.8.18 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the class-wp-press-this.php script due to a failure to properly restrict the user interface for assigning taxonomy terms...

9.8CVSS9AI score0.81848EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.31 views

WordPress 4.2.x < 4.2.12 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the class-wp-press-this.php script due to a failure to properly restrict the user interface for assigning taxonomy terms...

9.8CVSS9AI score0.81848EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.36 views

WordPress 4.4.x < 4.4.7 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the class-wp-press-this.php script due to a failure to properly restrict the user interface for assigning taxonomy terms...

9.8CVSS9AI score0.81848EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2017/02/03 12:0 a.m.30 views

Debian Security Advisory DSA 3779-1 (wordpress - security update)

Several vulnerabilities were discovered in wordpress, a web blogging tool. They would allow remote attackers to hijack victims OpenVAS Vulnerability Test $Id: deb3779.nasl 6607 2017-07-07 12:04:25Z cfischer $ Auto-generated from advisory DSA 3779-1 using nvtgen 1.0 Script version: 1.0 Author:...

7.5CVSS0.3AI score0.09933EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2017/02/02 12:0 a.m.41 views

WordPress < 4.7.2 Multiple Security Vulnerabilities - Linux

WordPress is prone to multiple security vulnerabilities because it fails to sanitize user-supplied input. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

9.8CVSS7.9AI score0.81848EPSS
Exploits0References4
Debian
Debian
added 2017/02/01 8:2 a.m.39 views

[SECURITY] [DLA 813-1] wordpress security update

Package : wordpress Version : 3.6.1+dfsg-1deb7u13 CVE ID : CVE-2017-5488 CVE-2017-5489 CVE-2017-5490 CVE-2017-5491 CVE-2017-5492 CVE-2017-5493 CVE-2017-5610 CVE-2017-5611 CVE-2017-5612 Debian Bug : 851310 852767 Several vulnerabilities were discovered in wordpress, a web blogging tool. The Common...

9.8CVSS9.7AI score0.09933EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/01/31 12:0 a.m.150 views

WordPress < 4.7.2 Multiple Vulnerabilities

According to its self-reported version number, the WordPress application running on the remote web server is prior to 4.7.2. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the class-wp-press-this.php script due to a failure to properly...

9.8CVSS6.8AI score0.81848EPSS
Exploits0References6
NVD
NVD
added 2017/01/30 4:59 a.m.22 views

CVE-2017-5611

SQL injection vulnerability in wp-includes/class-wp-query.php in WPQuery in WordPress before 4.7.2 allows remote attackers to execute arbitrary SQL commands by leveraging the presence of an affected plugin or theme that mishandles a crafted post type name...

9.8CVSS9.9AI score0.09933EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2017/01/30 4:59 a.m.35 views

CVE-2017-5611

SQL injection vulnerability in wp-includes/class-wp-query.php in WPQuery in WordPress before 4.7.2 allows remote attackers to execute arbitrary SQL commands by leveraging the presence of an affected plugin or theme that mishandles a crafted post type name...

9.8CVSS7.2AI score0.09933EPSS
Exploits0References6
OSV
OSV
added 2017/01/30 4:59 a.m.28 views

CVE-2017-5611

SQL injection vulnerability in wp-includes/class-wp-query.php in WPQuery in WordPress before 4.7.2 allows remote attackers to execute arbitrary SQL commands by leveraging the presence of an affected plugin or theme that mishandles a crafted post type name...

9.8CVSS9.9AI score
Exploits0References9
CVE
CVE
added 2017/01/30 4:24 a.m.356 views

CVE-2017-5611

CVE-2017-5611 is a SQL injection vulnerability in WordPress WP_Query (wp-includes/class-wp-query.php) that affects WordPress up to version 4.7.1 (pre-4.7.2). The root cause is insufficient sanitization of the post type name, enabling remote attackers to execute arbitrary SQL commands. Connected N...

9.8CVSS9.7AI score0.09933EPSS
In wildExploits0References9Affected Software1
Cvelist
Cvelist
added 2017/01/30 4:24 a.m.26 views

CVE-2017-5611

SQL injection vulnerability in wp-includes/class-wp-query.php in WPQuery in WordPress before 4.7.2 allows remote attackers to execute arbitrary SQL commands by leveraging the presence of an affected plugin or theme that mishandles a crafted post type name...

9.8AI score0.09933EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2017/01/30 12:0 a.m.394 views

CVE-2017-5611

SQL injection vulnerability in wp-includes/class-wp-query.php in WPQuery in WordPress before 4.7.2 allows remote attackers to execute arbitrary SQL commands by leveraging the presence of an affected plugin or theme that mishandles a crafted post type name. Recent assessments: Assessed Attacker...

9.8CVSS6.9AI score0.09933EPSS
In wildExploits0References11
Rows per page
Query Builder