Описание
WordPress 2.0.11 and earlier allows remote attackers to obtain sensitive information via an empty value of the page parameter to certain PHP scripts under wp-admin/, which reveals the path in various error messages.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 2.3.2-1ubuntu1 |
| edgy | ignored | end of life, was needed |
| feisty | not-affected | 2.1.3-1ubuntu1 |
| gutsy | not-affected | 2.2.2-1ubuntu1.1 |
| hardy | not-affected | 2.3.2-1ubuntu1 |
| intrepid | not-affected | 2.3.2-1ubuntu1 |
| jaunty | not-affected | 2.3.2-1ubuntu1 |
| karmic | not-affected | 2.3.2-1ubuntu1 |
| upstream | needs-triage |
Показывать по
Ссылки на источники
EPSS
5 Medium
CVSS2
Связанные уязвимости
WordPress 2.0.11 and earlier allows remote attackers to obtain sensitive information via an empty value of the page parameter to certain PHP scripts under wp-admin/, which reveals the path in various error messages.
WordPress 2.0.11 and earlier allows remote attackers to obtain sensiti ...
WordPress 2.0.11 and earlier allows remote attackers to obtain sensitive information via an empty value of the page parameter to certain PHP scripts under wp-admin/, which reveals the path in various error messages.
EPSS
5 Medium
CVSS2