CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

Debian•added 2017/08/29 6:8 p.m.•24 views

[SECURITY] [DLA 1075-1] wordpress security update

Package : wordpress Version : 3.6.1+dfsg-1deb7u16 CVE ID : CVE-2017-9066 Debian Bug : 862816 In WordPress, there is insufficient redirect validation in the HTTP class, leading to SSRF. For Debian 7 "Wheezy", these problems have been fixed in version 3.6.1+dfsg-1deb7u16. We recommend that you...

8.6CVSS9AI score0.01408EPSS

Exploits0

Tenable Nessus•added 2017/07/17 12:0 a.m.•19 views

Fedora 26 : wordpress (2017-fe7c3c9c30)

WordPress 4.7.5 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.7.4 and earlier are affected by six security issues : - Insufficient redirect validation in the HTTP class. Reported by Ronni...

5.2AI score

Exploits0References3

Prion•added 2017/05/18 2:29 p.m.•17 views

Input validation

In WordPress before 4.7.5, there is insufficient redirect validation in the HTTP class, leading to SSRF...

5CVSS8.3AI score0.01408EPSS

Exploits0References8Affected Software2

OSV•added 2017/05/18 2:29 p.m.•19 views

CVE-2017-9066

In WordPress before 4.7.5, there is insufficient redirect validation in the HTTP class, leading to SSRF...

8.6CVSS8.4AI score

Exploits0References8

NVD•added 2017/05/18 2:29 p.m.•16 views

CVE-2017-9066

In WordPress before 4.7.5, there is insufficient redirect validation in the HTTP class, leading to SSRF...

8.6CVSS8.5AI score0.01408EPSS

Exploits0References8

OSV•added 2017/05/18 2:29 p.m.•1 views

DEBIAN-CVE-2017-9066

In WordPress before 4.7.5, there is insufficient redirect validation in the HTTP class, leading to SSRF...

8.6CVSS6.8AI score0.01408EPSS

Exploits0References1

CVE•added 2017/05/18 2:0 p.m.•162 views

CVE-2017-9066

CVE-2017-9066 affects WordPress prior to 4.7.5. The issue is insufficient redirect validation in the WordPress HTTP class WP_Http::request(), enabling SSRF via crafted redirects. Impact is described as HIGH for integrity/availability in CVSS terms, with exploitation possible over network and no u...

8.6CVSS8.3AI score0.01408EPSS

Exploits0References8Affected Software1

Debian CVE•added 2017/05/18 2:0 p.m.•21 views

CVE-2017-9066

In WordPress before 4.7.5, there is insufficient redirect validation in the HTTP class, leading to SSRF...

8.6CVSS1AI score0.01408EPSS

Exploits0

Packet Storm•added 2006/12/28 12:0 a.m.•36 views

hlstats-sql.txt

Hlstats is more than 5 years old. HLstats has been downloaded more than 270,000 from http://sf.net. Nothing more than absolutely benign XSS has been reported for this application, until NOW. Merry Christmass, --Michael Brooks Homepage: http://sourceforge.net/projects/hlstats/ -----BEGIN PGP SIGNE...

7.4AI score

Exploits0

Exploit DB•added 2006/12/25 12:0 a.m.•52 views

HLStats 1.34 - 'hlstats.php' SQL Injection

= 1.20 works with magicquotesgpc=On by Michael Brooks / print "HLStats SQL Injection Exploit -------------------------------------------------------------------------------------------------------------------------------------------- Welcome To HLstats Exploit code. SQL Inection + Path Disclosure...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by