CVE-2017-5489

Опубликовано: 15 янв. 2017

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 6.8

CVSS3: 8.8

Описание

Cross-site request forgery (CSRF) vulnerability in WordPress before 4.7.1 allows remote attackers to hijack the authentication of unspecified victims via vectors involving a Flash file upload.

Релиз	Статус	Примечание
artful	not-affected	4.7.1+dfsg-1
bionic	not-affected	4.7.1+dfsg-1
cosmic	not-affected	4.7.1+dfsg-1
devel	not-affected	4.7.1+dfsg-1
disco	not-affected	4.7.1+dfsg-1
eoan	not-affected	4.7.1+dfsg-1
esm-apps/bionic	not-affected	4.7.1+dfsg-1
esm-apps/focal	not-affected	4.7.1+dfsg-1
esm-apps/jammy	not-affected	4.7.1+dfsg-1
esm-apps/noble	not-affected	4.7.1+dfsg-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 66%

0.00522

Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

CVE-2017-5489

CVSS3: 8.8

nvd

больше 8 лет назад

Cross-site request forgery (CSRF) vulnerability in WordPress before 4.7.1 allows remote attackers to hijack the authentication of unspecified victims via vectors involving a Flash file upload.

CVE-2017-5489

CVSS3: 8.8

debian

больше 8 лет назад

Cross-site request forgery (CSRF) vulnerability in WordPress before 4. ...

GHSA-qf7h-2v85-whcw

CVSS3: 8.8

github

около 3 лет назад

Cross-site request forgery (CSRF) vulnerability in WordPress before 4.7.1 allows remote attackers to hijack the authentication of unspecified victims via vectors involving a Flash file upload.

EPSS

Процентиль: 66%

0.00522

Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

CVE-2017-5489

Описание

Пакет wordpress

Ссылки на источники

Связанные уязвимости