CVE-2011-3128

Опубликовано: 10 авг. 2011

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 treats unattached attachments as published, which might allow remote attackers to obtain sensitive data via vectors related to wp-includes/post.php.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:wordpress:wordpress:3.1:*:*:*:*:*:*:*

cpe:2.3:a:wordpress:wordpress:3.1.1:*:*:*:*:*:*:*

cpe:2.3:a:wordpress:wordpress:3.1.2:*:*:*:*:*:*:*

cpe:2.3:a:wordpress:wordpress:3.2:beta1:*:*:*:*:*:*

EPSS

Процентиль: 77%

0.01105

Низкий

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

CVE-2011-3128

ubuntu

почти 14 лет назад

WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 treats unattached attachments as published, which might allow remote attackers to obtain sensitive data via vectors related to wp-includes/post.php.

CVE-2011-3128

debian

почти 14 лет назад

WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 treats unattached att ...

GHSA-f5gx-hrrr-h7q3

github

около 3 лет назад

WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 treats unattached attachments as published, which might allow remote attackers to obtain sensitive data via vectors related to wp-includes/post.php.

EPSS

Процентиль: 77%

0.01105

Низкий

5 Medium

CVSS2

Дефекты

CWE-200