Lucene search
K

6 matches found

nessus
nessus
added 2019/05/30 12:0 a.m.93 views

WordPress < 4.9.9 Remote Code Execution Vulnerabilities

According to its self-reported version number, the WordPress application running on the remote web server is prior to 4.9.9. It is, therefore, affected by remote command execution vulnerabilities in its thumbnail processing component due to insufficient validation of user input. An authenticated,...

8.8CVSS8.4AI score0.07264EPSS
Exploits0References3
osv
osv
added 2018/09/06 4:29 p.m.23 views

CVE-2018-1000773

WordPress version 4.9.8 and earlier contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in remote code execution due to an incomplete fix for CVE-2017-1000600. This attack appears to be exploitable via thumbnail upload by an authenticated user and may require...

8.8CVSS9.1AI score
Exploits0References3
ubuntucve
ubuntucve
added 2018/09/06 4:29 p.m.27 views

CVE-2018-1000773

WordPress version 4.9.8 and earlier contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in remote code execution due to an incomplete fix for CVE-2017-1000600. This attack appears to be exploitable via thumbnail upload by an authenticated user and may require...

8.8CVSS7.2AI score0.07264EPSS
Exploits0References3
cvelist
cvelist
added 2018/09/06 4:0 p.m.30 views

CVE-2018-1000773

WordPress version 4.9.8 and earlier contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in remote code execution due to an incomplete fix for CVE-2017-1000600. This attack appears to be exploitable via thumbnail upload by an authenticated user and may require...

9AI score0.07264EPSS
Exploits0References3
cve
cve
added 2018/09/06 4:0 p.m.101 views

CVE-2018-1000773

CVE-2018-1000773 affects WordPress 4.9.8 and earlier, where a CWE-20 input validation issue in thumbnail processing can lead to remote code execution due to an incomplete fix for CVE-2017-1000600. Exploitation is described as possible via thumbnail uploads by an authenticated user, potentially re...

8.8CVSS8.9AI score0.07264EPSS
Exploits0References3Affected Software1
openvas
openvas
added 2018/08/13 12:0 a.m.52 views

WordPress <= 4.9.8 Multiple Vulnerabilities - Linux

WordPress is prone to multiple vulnerabilities. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS7.2AI score0.17722EPSS
Exploits0References5
Rows per page
Query Builder