WordPress — свободно распространяемая система управления содержимым сайта с открытым исходным кодом.

Релизный цикл, информация об уязвимостях

Продукт: WordPress

Вендор: Wordpress

График релизов

Недавние уязвимости WordPress

Количество 1 896

CVE-2005-1102

больше 20 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in template-functi ...

CVSS2: 6.8

EPSS: Низкий

CVE-2004-1559

почти 21 год назад

Multiple cross-site scripting (XSS) vulnerabilities in Wordpress 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) redirect_to, text, popupurl, or popuptitle parameters to wp-login.php, (2) redirect_url parameter to admin-header.php, (3) popuptitle, popupurl, content, or post_title parameters to bookmarklet.php, (4) cat_ID parameter to categories.php, (5) s parameter to edit.php, or (6) s or mode parameter to edit-comments.php.

CVSS2: 4.3

EPSS: Низкий

CVE-2004-1584

почти 21 год назад

CRLF injection vulnerability in wp-login.php in WordPress 1.2 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the text parameter.

CVSS2: 5

EPSS: Средний

CVE-2004-1559

почти 21 год назад

Multiple cross-site scripting (XSS) vulnerabilities in Wordpress 1.2 a ...

CVSS2: 4.3

EPSS: Низкий

CVE-2004-1584

почти 21 год назад

CRLF injection vulnerability in wp-login.php in WordPress 1.2 allows r ...

CVSS2: 5

EPSS: Средний

CVE-2004-1559

почти 21 год назад

Multiple cross-site scripting (XSS) vulnerabilities in Wordpress 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) redirect_to, text, popupurl, or popuptitle parameters to wp-login.php, (2) redirect_url parameter to admin-header.php, (3) popuptitle, popupurl, content, or post_title parameters to bookmarklet.php, (4) cat_ID parameter to categories.php, (5) s parameter to edit.php, or (6) s or mode parameter to edit-comments.php.

CVSS2: 4.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2005-1102 Multiple cross-site scripting (XSS) vulnerabilities in template-functi ...	CVSS2: 6.8	1% Низкий	больше 20 лет назад
CVE-2004-1559 Multiple cross-site scripting (XSS) vulnerabilities in Wordpress 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) redirect_to, text, popupurl, or popuptitle parameters to wp-login.php, (2) redirect_url parameter to admin-header.php, (3) popuptitle, popupurl, content, or post_title parameters to bookmarklet.php, (4) cat_ID parameter to categories.php, (5) s parameter to edit.php, or (6) s or mode parameter to edit-comments.php.	CVSS2: 4.3	1% Низкий	почти 21 год назад
CVE-2004-1584 CRLF injection vulnerability in wp-login.php in WordPress 1.2 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the text parameter.	CVSS2: 5	16% Средний	почти 21 год назад
CVE-2004-1559 Multiple cross-site scripting (XSS) vulnerabilities in Wordpress 1.2 a ...	CVSS2: 4.3	1% Низкий	почти 21 год назад
CVE-2004-1584 CRLF injection vulnerability in wp-login.php in WordPress 1.2 allows r ...	CVSS2: 5	16% Средний	почти 21 год назад
CVE-2004-1559 Multiple cross-site scripting (XSS) vulnerabilities in Wordpress 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) redirect_to, text, popupurl, or popuptitle parameters to wp-login.php, (2) redirect_url parameter to admin-header.php, (3) popuptitle, popupurl, content, or post_title parameters to bookmarklet.php, (4) cat_ID parameter to categories.php, (5) s parameter to edit.php, or (6) s or mode parameter to edit-comments.php.	CVSS2: 4.3	1% Низкий	почти 21 год назад

Уязвимостей на страницу