Lucene search
K

3 matches found

debian
debian
added 2020/01/08 5:47 a.m.140 views

[SECURITY] [DSA 4599-1] wordpress security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4599-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 08, 2020 https://www.debian.org/security/faq -...

7.5CVSS1.1AI score0.36503EPSS
Exploits9
cve
cve
added 2019/09/11 1:6 p.m.126 views

CVE-2019-16220

Summary: CVE-2019-16220 affects WordPress before 5.2.3. The issue is an open redirect in wp_validate_redirect (wp-includes/pluggable.php) when a provided URL path does not start with "/". Root cause: insufficient validation/sanitization of redirect URLs leads to an open redirect. Impact: potentia...

6.1CVSS6.2AI score0.0255EPSS
Exploits0References9Affected Software1
nessus
nessus
added 2019/09/09 12:0 a.m.56 views

WordPress <= 3.6.1 / 3.7.x < 3.7.30 / 3.8.x < 3.8.30 / 3.9.x < 3.9.28 / 4.0.x < 4.0.27 / 4.1.x < 4.1.27 / 4.2.x < 4.2.24 / 4.3.x < 4.3.20 / 4.4.x < 4.4.19 / 4.5.x < 4.5.18 / 4.6.x < 4.6.15 / 4.7.x < 4.7.14 / 4.8.x < 4.8.10 / 4.9.x < 4.9.11 / 5.0.x < 5.0.6 / 5.1.x < 5.1.2 / 5.2.x < 5.2.3 Multiple Vulnerabilities

According to its self-reported version number, the WordPress application running on the remote web server is affected by multiple vulnerabilities: - An open redirect vulnerability exists in WordPress due to improper sanitization of user-supplied input to HTTP request parameters. An unauthenticate...

6.1CVSS7.2AI score0.05181EPSS
Exploits5References25
Rows per page
Query Builder