CVE-2010-0673

Опубликовано: 22 фев. 2010

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in cplphoto.php in the Copperleaf Photolog plugin 0.16, and possibly earlier, for WordPress allows remote attackers to execute arbitrary SQL commands via the postid parameter.

Ссылки

http://osvdb.org/62346
http://packetstormsecurity.org/1002-exploits/wpcopperleaf-sql.txt
Exploit
http://secunia.com/advisories/38579
Vendor Advisory
http://www.exploit-db.com/exploits/11458
Exploit
http://www.securityfocus.com/bid/38239
Exploit
http://osvdb.org/62346
http://packetstormsecurity.org/1002-exploits/wpcopperleaf-sql.txt
Exploit
http://secunia.com/advisories/38579
Vendor Advisory
http://www.exploit-db.com/exploits/11458
Exploit
http://www.securityfocus.com/bid/38239
Exploit

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:copperleaf:photolog:0.16:*:*:*:*:*:*:*

cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*

EPSS

Процентиль: 71%

0.00694

Низкий

7.5 High

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-7f8x-2qmr-vpm2

github

около 3 лет назад