9 matches found
Fedora: Security Advisory for wordpress (FEDORA-2020-b386fac43a)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] [DSA 4784-1] wordpress security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4784-1 [email protected] https://www.debian.org/security/ Sebastien Delafond November 06, 2020 https://www.debian.org/security/faq -...
Debian DLA-2429-1 : wordpress security update
There were several vulnerabilites reported against wordpress, as follows : CVE-2020-28032 WordPress before 4.7.19 mishandles deserialization requests in wp-includes/Requests/Utility/FilteredIterator.php. CVE-2020-28033 WordPress before 4.7.19 mishandles embeds from disabled sites on a multisite...
Debian: Security Advisory (DLA-2429-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
WordPress < 5.5.2 Multiple Vulnerabilities
According to its self-reported version number, the installation of WordPress installed on the remote host is affected by multiple vulnerabilities: - A deserialization vulnerability exists in wp-includes/Requests/Utility/FilteredIterator.php. An unauthenticated, remote attacker can exploit this, b...
[SECURITY] [DLA 2429-1] wordpress security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2429-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta November 03, 2020 https://wiki.debian.org/LTS -...
CVE-2020-28037
isbloginstalled in wp-includes/functions.php in WordPress before 5.5.2 improperly determines whether WordPress is already installed, which might allow an attacker to perform a new installation, leading to remote code execution as well as a denial of service for the old installation...
CVE-2020-28037
isbloginstalled in wp-includes/functions.php in WordPress before 5.5.2 improperly determines whether WordPress is already installed, which might allow an attacker to perform a new installation, leading to remote code execution as well as a denial of service for the old installation...
CVE-2020-28037
CVE-2020-28037 affects WordPress prior to 5.5.2. The vulnerability lies in is_blog_installed in wp-includes/functions.php, which can misclassify a new installation and allow an attacker to perform a fresh install, potentially leading to remote code execution and DoS on the old installation. Affec...