Логотип exploitDog
bind:CVE-2007-1277
Консоль
Логотип exploitDog

exploitDog

bind:CVE-2007-1277

Количество 4

Количество 4

ubuntu логотип

CVE-2007-1277

больше 18 лет назад

WordPress 2.1.1, as downloaded from some official distribution sites during February and March 2007, contains an externally introduced backdoor that allows remote attackers to execute arbitrary commands via (1) an eval injection vulnerability in the ix parameter to wp-includes/feed.php, and (2) an untrusted passthru call in the iz parameter to wp-includes/theme.php.

CVSS2: 7.5
EPSS: Высокий
nvd логотип

CVE-2007-1277

больше 18 лет назад

WordPress 2.1.1, as downloaded from some official distribution sites during February and March 2007, contains an externally introduced backdoor that allows remote attackers to execute arbitrary commands via (1) an eval injection vulnerability in the ix parameter to wp-includes/feed.php, and (2) an untrusted passthru call in the iz parameter to wp-includes/theme.php.

CVSS2: 7.5
EPSS: Высокий
debian логотип

CVE-2007-1277

больше 18 лет назад

WordPress 2.1.1, as downloaded from some official distribution sites d ...

CVSS2: 7.5
EPSS: Высокий
github логотип

GHSA-vp78-84m4-9r4q

больше 3 лет назад

WordPress 2.1.1, as downloaded from some official distribution sites during February and March 2007, contains an externally introduced backdoor that allows remote attackers to execute arbitrary commands via (1) an eval injection vulnerability in the ix parameter to wp-includes/feed.php, and (2) an untrusted passthru call in the iz parameter to wp-includes/theme.php.

EPSS: Высокий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
ubuntu логотип
CVE-2007-1277

WordPress 2.1.1, as downloaded from some official distribution sites during February and March 2007, contains an externally introduced backdoor that allows remote attackers to execute arbitrary commands via (1) an eval injection vulnerability in the ix parameter to wp-includes/feed.php, and (2) an untrusted passthru call in the iz parameter to wp-includes/theme.php.

CVSS2: 7.5
85%
Высокий
больше 18 лет назад
nvd логотип
CVE-2007-1277

WordPress 2.1.1, as downloaded from some official distribution sites during February and March 2007, contains an externally introduced backdoor that allows remote attackers to execute arbitrary commands via (1) an eval injection vulnerability in the ix parameter to wp-includes/feed.php, and (2) an untrusted passthru call in the iz parameter to wp-includes/theme.php.

CVSS2: 7.5
85%
Высокий
больше 18 лет назад
debian логотип
CVE-2007-1277

WordPress 2.1.1, as downloaded from some official distribution sites d ...

CVSS2: 7.5
85%
Высокий
больше 18 лет назад
github логотип
GHSA-vp78-84m4-9r4q

WordPress 2.1.1, as downloaded from some official distribution sites during February and March 2007, contains an externally introduced backdoor that allows remote attackers to execute arbitrary commands via (1) an eval injection vulnerability in the ix parameter to wp-includes/feed.php, and (2) an untrusted passthru call in the iz parameter to wp-includes/theme.php.

85%
Высокий
больше 3 лет назад

Уязвимостей на страницу