6 matches found
WordPress < 4.9.9 Remote Code Execution Vulnerabilities
According to its self-reported version number, the WordPress application running on the remote web server is prior to 4.9.9. It is, therefore, affected by remote command execution vulnerabilities in its thumbnail processing component due to insufficient validation of user input. An authenticated,...
CVE-2018-1000773
WordPress version 4.9.8 and earlier contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in remote code execution due to an incomplete fix for CVE-2017-1000600. This attack appears to be exploitable via thumbnail upload by an authenticated user and may require...
CVE-2018-1000773
WordPress version 4.9.8 and earlier contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in remote code execution due to an incomplete fix for CVE-2017-1000600. This attack appears to be exploitable via thumbnail upload by an authenticated user and may require...
CVE-2018-1000773
WordPress version 4.9.8 and earlier contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in remote code execution due to an incomplete fix for CVE-2017-1000600. This attack appears to be exploitable via thumbnail upload by an authenticated user and may require...
CVE-2018-1000773
CVE-2018-1000773 affects WordPress 4.9.8 and earlier, where a CWE-20 input validation issue in thumbnail processing can lead to remote code execution due to an incomplete fix for CVE-2017-1000600. Exploitation is described as possible via thumbnail uploads by an authenticated user, potentially re...
WordPress <= 4.9.8 Multiple Vulnerabilities - Linux
WordPress is prone to multiple vulnerabilities. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...