exploitDog

CVE-2011-3818

Опубликовано: 24 сент. 2011

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

WordPress 2.9.2 and 3.0.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by wp-admin/includes/user.php and certain other files.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:wordpress:wordpress:2.9.2:*:*:*:*:*:*:*

cpe:2.3:a:wordpress:wordpress:3.0.4:*:*:*:*:*:*:*

EPSS

Процентиль: 69%

0.00618

Низкий

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

CVE-2011-3818

ubuntu

больше 13 лет назад

WordPress 2.9.2 and 3.0.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by wp-admin/includes/user.php and certain other files.

GHSA-v8xm-phm4-7xwm

github

около 3 лет назад

WordPress 2.9.2 and 3.0.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by wp-admin/includes/user.php and certain other files.

EPSS

Процентиль: 69%

0.00618

Низкий

5 Medium

CVSS2

Дефекты

CWE-200