Lucene search
K

130 matches found

NVD
NVD
added 2007/01/29 5:28 p.m.18 views

CVE-2007-0538

Telligent Community Server 2.1 and earlier allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to 1 a large file, which triggers a long download session without a timeout constraint; or 2 a file with a...

5CVSS6.8AI score0.0144EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2007/01/29 5:28 p.m.35 views

CVE-2007-0541

WordPress allows remote attackers to determine the existence of arbitrary files, and possibly read portions of certain files, via pingback service calls with a source URI that corresponds to a local pathname, which triggers different fault codes for existing and non-existing files, and in certain...

5CVSS6AI score0.02521EPSS
Exploits0References1
Prion
Prion
added 2007/01/29 5:28 p.m.20 views

Code injection

WordPress allows remote attackers to determine the existence of arbitrary files, and possibly read portions of certain files, via pingback service calls with a source URI that corresponds to a local pathname, which triggers different fault codes for existing and non-existing files, and in certain...

5CVSS6.8AI score0.02521EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2007/01/29 5:28 p.m.26 views

CVE-2007-0540

WordPress allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data...

5CVSS6.5AI score0.07232EPSS
Exploits0References5
OSV
OSV
added 2007/01/29 5:28 p.m.2 views

DEBIAN-CVE-2007-0541

WordPress allows remote attackers to determine the existence of arbitrary files, and possibly read portions of certain files, via pingback service calls with a source URI that corresponds to a local pathname, which triggers different fault codes for existing and non-existing files, and in certain...

5CVSS6.5AI score0.02521EPSS
Exploits0References1
Prion
Prion
added 2007/01/29 5:28 p.m.25 views

Design/Logic Flaw

The wpremotefopen function in WordPress before 2.1 allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to a large file, which triggers a long download session without a timeout constraint...

7.8CVSS6.9AI score0.03384EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2007/01/29 5:28 p.m.26 views

CVE-2007-0540

WordPress allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data...

5CVSS5.9AI score0.07232EPSS
Exploits0References1
Prion
Prion
added 2007/01/29 5:28 p.m.21 views

Design/Logic Flaw

WordPress allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data...

5CVSS6.8AI score0.07232EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2007/01/29 5:28 p.m.4 views

DEBIAN-CVE-2007-0539

The wpremotefopen function in WordPress before 2.1 allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to a large file, which triggers a long download session without a timeout constraint...

7.8CVSS6.8AI score0.03384EPSS
Exploits0References1
Prion
Prion
added 2007/01/29 5:28 p.m.17 views

Design/Logic Flaw

Telligent Community Server 2.1 and earlier allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to 1 a large file, which triggers a long download session without a timeout constraint; or 2 a file with a...

5CVSS7.2AI score0.0144EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2007/01/29 5:28 p.m.2 views

DEBIAN-CVE-2007-0540

WordPress allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data...

5CVSS6.8AI score0.07232EPSS
Exploits0References1
OSV
OSV
added 2007/01/29 5:28 p.m.10 views

CVE-2007-0541

WordPress allows remote attackers to determine the existence of arbitrary files, and possibly read portions of certain files, via pingback service calls with a source URI that corresponds to a local pathname, which triggers different fault codes for existing and non-existing files, and in certain...

6.5AI score
Exploits0References3
OSV
OSV
added 2007/01/29 5:28 p.m.13 views

CVE-2007-0540

WordPress allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data...

6.5AI score
Exploits0References5
OSV
OSV
added 2007/01/29 5:28 p.m.9 views

CVE-2007-0539

The wpremotefopen function in WordPress before 2.1 allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to a large file, which triggers a long download session without a timeout constraint...

6.5AI score
Exploits0References3
CVE
CVE
added 2007/01/29 5:0 p.m.60 views

CVE-2007-0539

The CVE-2007-0539 entry concerns WordPress prior to 2.1, where the wp_remote_fopen function can be abused by remote pingback calls that reference a very large file. This triggers a long download session without a timeout, enabling a denial of service (bandwidth or thread consumption). Connected s...

7.8CVSS6.6AI score0.03384EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2007/01/29 5:0 p.m.80 views

CVE-2007-0540

CVE-2007-0540 corresponds to a DoS vulnerability in WordPress where remote attackers pingback service calls to a source URI that points to a binary-content file, which is downloaded but yields no usable pingback data. The connected sources confirm affected software (WordPress) and describe the im...

5CVSS6.4AI score0.07232EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2007/01/29 5:0 p.m.34 views

CVE-2007-0541

WordPress allows remote attackers to determine the existence of arbitrary files, and possibly read portions of certain files, via pingback service calls with a source URI that corresponds to a local pathname, which triggers different fault codes for existing and non-existing files, and in certain...

6.6AI score0.02521EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2007/01/29 5:0 p.m.26 views

CVE-2007-0540

WordPress allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data...

5CVSS5.1AI score0.07232EPSS
Exploits0
Debian CVE
Debian CVE
added 2007/01/29 5:0 p.m.29 views

CVE-2007-0539

The wpremotefopen function in WordPress before 2.1 allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to a large file, which triggers a long download session without a timeout constraint...

7.8CVSS5AI score0.03384EPSS
Exploits0
Cvelist
Cvelist
added 2007/01/29 5:0 p.m.29 views

CVE-2007-0540

WordPress allows remote attackers to cause a denial of service bandwidth or thread consumption via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data...

6.5AI score0.07232EPSS
Exploits0References5
Rows per page
Query Builder