Количество 1 896
Количество 1 896
CVE-2018-12895
WordPress through 4.9.6 allows Author users to execute arbitrary code by leveraging directory traversal in the wp-admin/post.php thumb parameter, which is passed to the PHP unlink function and can delete the wp-config.php file. This is related to missing filename validation in the wp-includes/post.php wp_delete_attachment function. The attacker must have capabilities for files and posts that are normally available only to the Author, Editor, and Administrator roles. The attack methodology is to delete wp-config.php and then launch a new installation process to increase the attacker's privileges.
CVE-2018-12895
WordPress through 4.9.6 allows Author users to execute arbitrary code ...
CVE-2018-10102
Before WordPress 4.9.5, the version string was not escaped in the get_the_generator function, and could lead to XSS in a generator tag.
CVE-2018-10102
Before WordPress 4.9.5, the version string was not escaped in the get_the_generator function, and could lead to XSS in a generator tag.
CVE-2018-10102
Before WordPress 4.9.5, the version string was not escaped in the get_ ...
CVE-2018-10101
Before WordPress 4.9.5, the URL validator assumed URLs with the hostname localhost were on the same host as the WordPress server.
CVE-2018-10101
Before WordPress 4.9.5, the URL validator assumed URLs with the hostname localhost were on the same host as the WordPress server.
CVE-2018-10101
Before WordPress 4.9.5, the URL validator assumed URLs with the hostna ...
CVE-2018-10100
Before WordPress 4.9.5, the redirection URL for the login page was not validated or sanitized if forced to use HTTPS.
CVE-2018-10100
Before WordPress 4.9.5, the redirection URL for the login page was not validated or sanitized if forced to use HTTPS.
CVE-2018-10100
Before WordPress 4.9.5, the redirection URL for the login page was not ...
CVE-2018-1000773
WordPress version 4.9.8 and earlier contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in remote code execution due to an incomplete fix for CVE-2017-1000600. This attack appears to be exploitable via thumbnail upload by an authenticated user and may require additional plugins in order to be exploited however this has not been confirmed at this time.
CVE-2018-1000773
WordPress version 4.9.8 and earlier contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in remote code execution due to an incomplete fix for CVE-2017-1000600. This attack appears to be exploitable via thumbnail upload by an authenticated user and may require additional plugins in order to be exploited however this has not been confirmed at this time.
CVE-2018-1000773
WordPress version 4.9.8 and earlier contains a CWE-20 Input Validation ...
CVE-2017-9066
In WordPress before 4.7.5, there is insufficient redirect validation in the HTTP class, leading to SSRF.
CVE-2017-9066
In WordPress before 4.7.5, there is insufficient redirect validation in the HTTP class, leading to SSRF.
CVE-2017-9066
In WordPress before 4.7.5, there is insufficient redirect validation i ...
CVE-2017-9065
In WordPress before 4.7.5, there is a lack of capability checks for post meta data in the XML-RPC API.
CVE-2017-9065
In WordPress before 4.7.5, there is a lack of capability checks for post meta data in the XML-RPC API.
CVE-2017-9065
In WordPress before 4.7.5, there is a lack of capability checks for po ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2018-12895 WordPress through 4.9.6 allows Author users to execute arbitrary code by leveraging directory traversal in the wp-admin/post.php thumb parameter, which is passed to the PHP unlink function and can delete the wp-config.php file. This is related to missing filename validation in the wp-includes/post.php wp_delete_attachment function. The attacker must have capabilities for files and posts that are normally available only to the Author, Editor, and Administrator roles. The attack methodology is to delete wp-config.php and then launch a new installation process to increase the attacker's privileges. | CVSS3: 8.8 | 89% Высокий | больше 7 лет назад |
| CVE-2018-12895 WordPress through 4.9.6 allows Author users to execute arbitrary code ... | CVSS3: 8.8 | 89% Высокий | больше 7 лет назад |
 | CVE-2018-10102 Before WordPress 4.9.5, the version string was not escaped in the get_the_generator function, and could lead to XSS in a generator tag. | CVSS3: 6.1 | 7% Низкий | больше 7 лет назад |
| CVE-2018-10102 Before WordPress 4.9.5, the version string was not escaped in the get_the_generator function, and could lead to XSS in a generator tag. | CVSS3: 6.1 | 7% Низкий | больше 7 лет назад |
| CVE-2018-10102 Before WordPress 4.9.5, the version string was not escaped in the get_ ... | CVSS3: 6.1 | 7% Низкий | больше 7 лет назад |
| CVE-2018-10101 Before WordPress 4.9.5, the URL validator assumed URLs with the hostname localhost were on the same host as the WordPress server. | CVSS3: 6.1 | 9% Низкий | больше 7 лет назад |
| CVE-2018-10101 Before WordPress 4.9.5, the URL validator assumed URLs with the hostname localhost were on the same host as the WordPress server. | CVSS3: 6.1 | 9% Низкий | больше 7 лет назад |
| CVE-2018-10101 Before WordPress 4.9.5, the URL validator assumed URLs with the hostna ... | CVSS3: 6.1 | 9% Низкий | больше 7 лет назад |
| CVE-2018-10100 Before WordPress 4.9.5, the redirection URL for the login page was not validated or sanitized if forced to use HTTPS. | CVSS3: 6.1 | 7% Низкий | больше 7 лет назад |
| CVE-2018-10100 Before WordPress 4.9.5, the redirection URL for the login page was not validated or sanitized if forced to use HTTPS. | CVSS3: 6.1 | 7% Низкий | больше 7 лет назад |
| CVE-2018-10100 Before WordPress 4.9.5, the redirection URL for the login page was not ... | CVSS3: 6.1 | 7% Низкий | больше 7 лет назад |
| CVE-2018-1000773 WordPress version 4.9.8 and earlier contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in remote code execution due to an incomplete fix for CVE-2017-1000600. This attack appears to be exploitable via thumbnail upload by an authenticated user and may require additional plugins in order to be exploited however this has not been confirmed at this time. | CVSS3: 8.8 | 24% Средний | около 7 лет назад |
| CVE-2018-1000773 WordPress version 4.9.8 and earlier contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in remote code execution due to an incomplete fix for CVE-2017-1000600. This attack appears to be exploitable via thumbnail upload by an authenticated user and may require additional plugins in order to be exploited however this has not been confirmed at this time. | CVSS3: 8.8 | 24% Средний | около 7 лет назад |
| CVE-2018-1000773 WordPress version 4.9.8 and earlier contains a CWE-20 Input Validation ... | CVSS3: 8.8 | 24% Средний | около 7 лет назад |
| CVE-2017-9066 In WordPress before 4.7.5, there is insufficient redirect validation in the HTTP class, leading to SSRF. | CVSS3: 8.6 | 1% Низкий | больше 8 лет назад |
| CVE-2017-9066 In WordPress before 4.7.5, there is insufficient redirect validation in the HTTP class, leading to SSRF. | CVSS3: 8.6 | 1% Низкий | больше 8 лет назад |
| CVE-2017-9066 In WordPress before 4.7.5, there is insufficient redirect validation i ... | CVSS3: 8.6 | 1% Низкий | больше 8 лет назад |
| CVE-2017-9065 In WordPress before 4.7.5, there is a lack of capability checks for post meta data in the XML-RPC API. | CVSS3: 7.5 | 4% Низкий | больше 8 лет назад |
| CVE-2017-9065 In WordPress before 4.7.5, there is a lack of capability checks for post meta data in the XML-RPC API. | CVSS3: 7.5 | 4% Низкий | больше 8 лет назад |
| CVE-2017-9065 In WordPress before 4.7.5, there is a lack of capability checks for po ... | CVSS3: 7.5 | 4% Низкий | больше 8 лет назад |
Уязвимостей на страницу