CVE-2024-13926

The WP-Syntax WordPress plugin through 1.2 does not properly handle input, allowing an attacker to create a post containing a large number of tags, thereby exploiting a catastrophic backtracking issue in the regular expression processing to cause a DoS...

CVE-2024-13926

The WP-Syntax WordPress plugin through 1.2 does not properly handle input, allowing an attacker to create a post containing a large number of tags, thereby exploiting a catastrophic backtracking issue in the regular expression processing to cause a DoS...

CVE-2024-13926

The WP-Syntax WordPress plugin through 1.2 does not properly handle input, allowing an attacker to create a post containing a large number of tags, thereby exploiting a catastrophic backtracking issue in the regular expression processing to cause a DoS...

CVE-2024-13926 WP-Syntax <= 1.2 - Author+ Potential ReDoS

The WP-Syntax WordPress plugin through 1.2 does not properly handle input, allowing an attacker to create a post containing a large number of tags, thereby exploiting a catastrophic backtracking issue in the regular expression processing to cause a DoS...

CVE-2024-13926 WP-Syntax <= 1.2 - Author+ Potential ReDoS

The WP-Syntax WordPress plugin through 1.2 does not properly handle input, allowing an attacker to create a post containing a large number of tags, thereby exploiting a catastrophic backtracking issue in the regular expression processing to cause a DoS...

CVE-2024-13926

CVE-2024-13926 affects the WP-Syntax WordPress plugin (versions up to 1.2). The vulnerability arises from improper input handling that lets an attacker craft a post with a large number of tags, triggering a catastrophic backtracking issue in the regular expression engine and causing a DoS. The en...

WordPress plugin WP-Syntax 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

PT-2025-17359 · WordPress · Wp-Syntax

Name of the Vulnerable Software and Affected Versions: WP-Syntax WordPress plugin versions 1.2 and earlier Description: The issue arises from the plugin's improper handling of input, allowing an attacker to create a post with a large number of tags. This exploits a catastrophic backtracking issue...

WP-Syntax < 0.9.10 - Remote Comm& Execution

The WP-Syntax WordPress plugin was affected by a Remote Comm& Execution security vulnerability...

Wordpress Plugin WP-Syntax <= 0.9.1 - Remote Command Execution

No description provided by source. ============================================================ Wordpress Plugin WP-Syntax = 0.9.1 Remote Command Execution ============================================================ 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /...

WordPress WP-Syntax插件远程PHP代码执行漏洞

BUGTRAQ ID: 36040 CVECAN ID: CVE-2009-2852 WordPress是一款免费的论坛Blog系统。 WP-Syntax是wordpress使用的用于高亮显示代码的插件。该插件的wp-syntax/test/index.php模块没有正确地过滤对testfilter所传送的参数便在calluserfuncarray调用中使用： function applyfilters$tag, $string global $testfilter; if !isset$testfilter$tag return $string;...

Wordpress Plugin WP-Syntax &lt;= 0.9.1 Remote Command Execution

No description provided by source. ====================================================================== Wordpress plugin WP-Syntax = 0.9.1 Remote Code Execution ====================================================================== This vulnerability was originally discovered by Raz0r on...

WordPress Plugin WP-Syntax 0.9.1 - Remote Command Execution

WordPress Plugin WP-Syntax 0.9.1 - Remote Command Execution ============================================================ Wordpress Plugin WP-Syntax Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0...

WordPress WP-Syntax 0.9.1 Command Execution

====================================================================== Wordpress plugin WP-Syntax $functions if isnull$functions continue; foreach$functions as $function $string = calluserfuncarray$function, array$string; return $string; ... Global variable testfilter is not defined, so...

WordPress WP-Syntax Plugin <= 0.9.1 - Remote Command Execution

In general, WP-Syntax plugin is the most popular plugin for WordPress to provide clean syntax highlighting for embedding source code within pages or posts. It uses the library, called GeShi, that implements all the functionality to review the syntax for each language HTML-code. The vulnerability ...

WordPress Plugin WP-Syntax 0.9.1 - Remote Command Execution

============================================================ Wordpress Plugin WP-Syntax Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com +...

Code injection

WP-Syntax plugin 0.9.1 and earlier for Wordpress, with registerglobals enabled, allows remote attackers to execute arbitrary PHP code via the testfilterwphead array parameter to test/index.php, which is used in a call to the calluserfuncarray function...

CVE-2009-2852

WP-Syntax plugin 0.9.1 and earlier for Wordpress, with registerglobals enabled, allows remote attackers to execute arbitrary PHP code via the testfilterwphead array parameter to test/index.php, which is used in a call to the calluserfuncarray function...

CVE-2009-2852

CVE-2009-2852 (WP-Syntax) affects WordPress WP-Syntax plugin versions

WordPress WP-Syntax 0.9.1 Command Execution

============================================================ Wordpress Plugin WP-Syntax Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com +...