Description
Direct code injection vulnerability in WordPress 1.5.1.3 and earlier allows remote attackers to execute arbitrary PHP code via the cache_lastpostdate[server] cookie.
Remediation
References
Related Vulnerabilities
Atlassian Jira Other Vulnerability (CVE-2019-20101)
WordPress Plugin Forms-Form builder and Contact form Multiple Unspecified Vulnerabilities (1.4.7)
MySQL CVE-2017-3653 Vulnerability (CVE-2017-3653)
WordPress Plugin BuddyBoss Media Cross-Site Scripting (3.2.3)
WordPress Plugin Admin renamer extended Cross-Site Scripting (3.2)