55 matches found
CVE-2021-29447
Wordpress is an open source CMS. A user with the ability to upload files like an Author can exploit an XML parsing issue in the Media Library leading to XXE attacks. This requires WordPress installation to be using PHP 8. Access to internal files is possible in a successful XXE attack. This has...
Design/Logic Flaw
Wordpress is an open source CMS. A user with the ability to upload files like an Author can exploit an XML parsing issue in the Media Library leading to XXE attacks. This requires WordPress installation to be using PHP 8. Access to internal files is possible in a successful XXE attack. This has...
CVE-2021-29447 WordPress Authenticated XXE attack when installation is running PHP 8
Wordpress is an open source CMS. A user with the ability to upload files like an Author can exploit an XML parsing issue in the Media Library leading to XXE attacks. This requires WordPress installation to be using PHP 8. Access to internal files is possible in a successful XXE attack. This has...
CVE-2021-29447
CVE-2021-29447 is an XXE vulnerability in WordPress media handling (getID3 parsing WAV iXML chunks) that affects WordPress 5.6–5.7 on PHP 8+. Authenticated authors can upload a malicious WAV to trigger XML External Entity substitution (LIBXML_NOENT), enabling access to internal files. The issue i...
CVE-2021-29447
Wordpress is an open source CMS. A user with the ability to upload files like an Author can exploit an XML parsing issue in the Media Library leading to XXE attacks. This requires WordPress installation to be using PHP 8. Access to internal files is possible in a successful XXE attack. This has...
WordPress 5.6-5.7 - Authenticated XXE Within the Media Library Affecting PHP 8
Description A user with the ability to upload files like an Author can exploit an XML parsing issue in the Media Library leading to XXE attacks. WordPress used an audio parsing library called ID3 that was affected by an XML External Entity XXE vulnerability affecting PHP versions 8 and above. Thi...
WordPress 5.6-5.7 - Authenticated XXE Within the Media Library Affecting PHP 8
Description A user with the ability to upload files like an Author can exploit an XML parsing issue in the Media Library leading to XXE attacks. WordPress used an audio parsing library called ID3 that was affected by an XML External Entity XXE vulnerability affecting PHP versions 8 and above. Thi...
PHP 8.x < 8.0.2 Null Dereference Vulnerability
According to its self-reported version number, the version of PHP installed on the remote host is 7.3.x prior to 7.3.27, 7.4.x prior to 7.4.15, or 8.x prior to 8.0.2. It is, therefore, affected by a null dereference when XML is provided to the SoapClient query function without an existing field...
WordPress: Authenticated XXE
Description: The WordPress core Media Library does not securely parse XML content when running on PHP 8. By uploading a malicious .wav file, an authenticated attacker can trigger a XXE vulnerability which enables to read secret system files, DoS the web server, perform SSRF, or aim at Remote Code...
Fedora 33 : phpMyAdmin (2020-43d8624421)
Version 5.0.3 2020-10-09 - issue 15983 Require twig ^2.9 - issue Fix option to import files locally appearing as not available - issue 16048 Fix to allow NULL as a default bit value - issue 16062 Fix 'htmlspecialchars expects parameter 1 to be string, null given' on Export xml - issue 16078 Fix n...
Fedora 32 : phpMyAdmin (2020-4e78c86902)
Version 5.0.3 2020-10-09 - issue 15983 Require twig ^2.9 - issue Fix option to import files locally appearing as not available - issue 16048 Fix to allow NULL as a default bit value - issue 16062 Fix 'htmlspecialchars expects parameter 1 to be string, null given' on Export xml - issue 16078 Fix n...
Fedora 31 : phpMyAdmin (2020-eadda524a8)
Version 5.0.3 2020-10-09 - issue 15983 Require twig ^2.9 - issue Fix option to import files locally appearing as not available - issue 16048 Fix to allow NULL as a default bit value - issue 16062 Fix 'htmlspecialchars expects parameter 1 to be string, null given' on Export xml - issue 16078 Fix n...
Fedora 31 : phpMyAdmin (2019-644b438f51)
Upstream announcement : Welcome to phpMyAdmin 4.9.1, a bugfix release. This is a regularly-schedule bugfix release that also includes some security hardening measures. We wish to point out that this also includes a routine fix for an issue that has been reported as CVE-2019-12922. The fix for thi...
Fedora 30 : phpMyAdmin (2019-6404181bf9)
Upstream announcement : Welcome to phpMyAdmin 4.9.1, a bugfix release. This is a regularly-schedule bugfix release that also includes some security hardening measures. We wish to point out that this also includes a routine fix for an issue that has been reported as CVE-2019-12922. The fix for thi...
Fedora 29 : phpMyAdmin (2019-3b5a7abe17)
Upstream announcement : Welcome to phpMyAdmin 4.9.1, a bugfix release. This is a regularly-schedule bugfix release that also includes some security hardening measures. We wish to point out that this also includes a routine fix for an issue that has been reported as CVE-2019-12922. The fix for thi...