exploitDog

GHSA-x6vh-35h2-cm67

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

wp-login.php in WordPress 2.0.5 and earlier displays different error messages if a user exists or not, which allows remote attackers to obtain sensitive information and facilitates brute force attacks.

wp-login.php in WordPress 2.0.5 and earlier displays different error messages if a user exists or not, which allows remote attackers to obtain sensitive information and facilitates brute force attacks.

Ссылки

EPSS

Процентиль: 79%

0.01283

Низкий

CVE ID

Связанные уязвимости

CVE-2007-0109

ubuntu

больше 18 лет назад

wp-login.php in WordPress 2.0.5 and earlier displays different error messages if a user exists or not, which allows remote attackers to obtain sensitive information and facilitates brute force attacks.

CVE-2007-0109

nvd

больше 18 лет назад

wp-login.php in WordPress 2.0.5 and earlier displays different error messages if a user exists or not, which allows remote attackers to obtain sensitive information and facilitates brute force attacks.

CVE-2007-0109

debian

больше 18 лет назад

wp-login.php in WordPress 2.0.5 and earlier displays different error m ...

EPSS

Процентиль: 79%

0.01283

Низкий

CVE ID