Описание
Directory traversal vulnerability in wp-db-backup.php in WordPress 2.0.3 and earlier allows remote attackers to read arbitrary files, delete arbitrary files, and cause a denial of service via a .. (dot dot) in the backup parameter in a wp-db-backup.php action to wp-admin/edit.php. NOTE: this might be the same as CVE-2006-5705.1.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 2.3.2-1ubuntu1 |
| edgy | not-affected | 2.0.4-2 |
| feisty | not-affected | 2.1.3-1ubuntu1 |
| gutsy | not-affected | 2.2.2-1ubuntu1.1 |
| hardy | not-affected | 2.3.2-1ubuntu1 |
| intrepid | not-affected | 2.3.2-1ubuntu1 |
| jaunty | not-affected | 2.3.2-1ubuntu1 |
| karmic | not-affected | 2.3.2-1ubuntu1 |
| upstream | released | 2.0.4 |
Показывать по
Ссылки на источники
7.5 High
CVSS2
Связанные уязвимости
Directory traversal vulnerability in wp-db-backup.php in WordPress 2.0.3 and earlier allows remote attackers to read arbitrary files, delete arbitrary files, and cause a denial of service via a .. (dot dot) in the backup parameter in a wp-db-backup.php action to wp-admin/edit.php. NOTE: this might be the same as CVE-2006-5705.1.
Directory traversal vulnerability in wp-db-backup.php in WordPress 2.0 ...
Directory traversal vulnerability in wp-db-backup.php in WordPress 2.0.3 and earlier allows remote attackers to read arbitrary files, delete arbitrary files, and cause a denial of service via a .. (dot dot) in the backup parameter in a wp-db-backup.php action to wp-admin/edit.php. NOTE: this might be the same as CVE-2006-5705.1.
7.5 High
CVSS2