Lucene search
K

9 matches found

OpenVAS
OpenVAS
added 2020/11/11 12:0 a.m.21 views

Fedora: Security Advisory for wordpress (FEDORA-2020-b386fac43a)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.1AI score0.16119EPSS
Exploits1References2
Debian
Debian
added 2020/11/06 1:39 p.m.127 views

[SECURITY] [DSA 4784-1] wordpress security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4784-1 [email protected] https://www.debian.org/security/ Sebastien Delafond November 06, 2020 https://www.debian.org/security/faq -...

7.5CVSS1.3AI score0.16119EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/11/06 12:0 a.m.44 views

Debian DLA-2429-1 : wordpress security update

There were several vulnerabilites reported against wordpress, as follows : CVE-2020-28032 WordPress before 4.7.19 mishandles deserialization requests in wp-includes/Requests/Utility/FilteredIterator.php. CVE-2020-28033 WordPress before 4.7.19 mishandles embeds from disabled sites on a multisite...

9.8CVSS8AI score0.16119EPSS
Exploits1References12
OpenVAS
OpenVAS
added 2020/11/04 12:0 a.m.26 views

Debian: Security Advisory (DLA-2429-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.16119EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/11/04 12:0 a.m.124 views

WordPress < 5.5.2 Multiple Vulnerabilities

According to its self-reported version number, the installation of WordPress installed on the remote host is affected by multiple vulnerabilities: - A deserialization vulnerability exists in wp-includes/Requests/Utility/FilteredIterator.php. An unauthenticated, remote attacker can exploit this, b...

9.8CVSS8.5AI score0.16119EPSS
Exploits1References10
Debian
Debian
added 2020/11/03 7:19 a.m.59 views

[SECURITY] [DLA 2429-1] wordpress security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-2429-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta November 03, 2020 https://wiki.debian.org/LTS -...

9.8CVSS9.5AI score0.16119EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2020/11/02 12:0 a.m.89 views

CVE-2020-28037

isbloginstalled in wp-includes/functions.php in WordPress before 5.5.2 improperly determines whether WordPress is already installed, which might allow an attacker to perform a new installation, leading to remote code execution as well as a denial of service for the old installation...

9.8CVSS7.2AI score0.0774EPSS
Exploits0References4
Cvelist
Cvelist
added 2020/10/31 12:59 a.m.33 views

CVE-2020-28037

isbloginstalled in wp-includes/functions.php in WordPress before 5.5.2 improperly determines whether WordPress is already installed, which might allow an attacker to perform a new installation, leading to remote code execution as well as a denial of service for the old installation...

9.5AI score0.0774EPSS
Exploits0References8
CVE
CVE
added 2020/10/31 12:59 a.m.204 views

CVE-2020-28037

CVE-2020-28037 affects WordPress prior to 5.5.2. The vulnerability lies in is_blog_installed in wp-includes/functions.php, which can misclassify a new installation and allow an attacker to perform a fresh install, potentially leading to remote code execution and DoS on the old installation. Affec...

9.8CVSS9.4AI score0.0774EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder