Lucene search
Ryan DewhurstWPVDB-ID:046FF6A0-90B2-4251-98FC-B7FBA93F8334HistoryDec 13, 2018 - 12:00 a.m.
WordPress <= 5.0 - PHP Object Injection via Meta Data
2018-12-1300:00:00
Ryan Dewhurst
wpscan.com
30
0.018 Low
EPSS
Percentile
88.1%
According to WordPress: “Sam Thomas discovered that contributors could craft meta data in a way that resulted in PHP object injection.”
Related
cve
cve
CVE-2018-20148
2018-12-14 20:29:00
veracode
veracode
Object Injection
2018-12-17 03:30:04
cvelist
cvelist
CVE-2018-20148
2018-12-14 20:00:00
prion
prion
Design/Logic Flaw
2018-12-14 20:29:00
debiancve
debiancve
CVE-2018-20148
2018-12-14 20:29:00
nvd
nvd
CVE-2018-20148
2018-12-14 20:29:00
ubuntucve
ubuntucve
CVE-2018-20148
2018-12-14 00:00:00
osv
osv
CVE-2018-20148
2018-12-14 20:29:00
wordpress - security update
2019-02-11 00:00:00
wordpress - security update
2019-03-01 00:00:00
nessus
nessus
WordPress < 4.9.9 / 5.x < 5.0.1 Multiple Vulnerabilities
2018-12-13 00:00:00
Debian DLA-1673-1 : wordpress security update
2019-02-12 00:00:00
Debian DSA-4401-1 : wordpress - security update
2019-03-04 00:00:00
openvas
openvas
WordPress Multiple Vulnerabilities (Dec 2018) - Windows
2018-12-17 00:00:00
WordPress Multiple Vulnerabilities (Dec 2018) - Linux
2018-12-17 00:00:00
Debian: Security Advisory (DLA-1673-1)
2019-02-11 00:00:00
debian
debian
[SECURITY] [DLA 1673-1] wordpress security update
2019-02-11 23:24:13
[SECURITY] [DSA 4401-1] wordpress security update
2019-03-01 07:03:31
[SECURITY] [DSA 4401-1] wordpress security update
2019-03-01 07:03:31