Lucene search

Ubuntu.comUB:CVE-2011-3129

HistoryAug 10, 2011 - 12:00 a.m.

CVE-2011-3129

2011-08-1000:00:00

ubuntu.com

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.003

Percentile

70.7%

JSON

The file upload functionality in WordPress 3.1 before 3.1.3 and 3.2 before
Beta 2, when running “on hosts with dangerous security settings,” has
unknown impact and attack vectors, possibly related to dangerous filenames.

References

wordpress.org/news/2011/05/wordpress-3-1-3/

launchpad.net/bugs/cve/CVE-2011-3129

nvd.nist.gov/vuln/detail/CVE-2011-3129

security-tracker.debian.org/tracker/CVE-2011-3129

www.cve.org/CVERecord?id=CVE-2011-3129

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.003

Percentile

70.7%

JSON

Related for UB:CVE-2011-3129