CVE-2009-2432

Опубликовано: 10 июл. 2009

Источник: debian

EPSS Низкий

Описание

WordPress and WordPress MU before 2.8.1 allow remote attackers to obtain sensitive information via a direct request to wp-settings.php, which reveals the installation path in an error message.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
wordpress	fixed	2.8.3-1		package

Примечания

Installation path is a known fact on a Debian package installation

EPSS

Процентиль: 77%

0.01072

Низкий

Связанные уязвимости

CVE-2009-2432

ubuntu

почти 16 лет назад

WordPress and WordPress MU before 2.8.1 allow remote attackers to obtain sensitive information via a direct request to wp-settings.php, which reveals the installation path in an error message.

CVE-2009-2432

redhat

почти 16 лет назад

WordPress and WordPress MU before 2.8.1 allow remote attackers to obtain sensitive information via a direct request to wp-settings.php, which reveals the installation path in an error message.

CVE-2009-2432

nvd

почти 16 лет назад

WordPress and WordPress MU before 2.8.1 allow remote attackers to obtain sensitive information via a direct request to wp-settings.php, which reveals the installation path in an error message.

GHSA-5x2f-7539-frwf

github

около 3 лет назад

WordPress and WordPress MU before 2.8.1 allow remote attackers to obtain sensitive information via a direct request to wp-settings.php, which reveals the installation path in an error message.

EPSS

Процентиль: 77%

0.01072

Низкий