Wordpress Multiple Vulnerabilities Network Vulnerability

Summary

This host has Wordpress installed and is prone to Multiple Vulnerabilities.

Impact

Attackers can exploit this issue to causes denial of service or to redirect the URL to any malicious website and conduct phishing attacks. Impact Level: Application

Solution

Upgrade your wordpress to the latest version 2.7.1 http://wordpress.org

Insight

Multiple flaws are due to lack of sanitization in user supplied data which can be exploited through 'wp-admin/upgrade.php' via a direct request and 'wp-admin/upgrade.php' via a URL in the backto parameter.

Affected

Wordpress version 2.6.x

References

http://archives.neohapsis.com/archives/bugtraq/2008-12/0226.html
http://osvdb.org/52213

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-6762, CVE-2008-6767

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Apple Safari PDF Javascript Security Bypass Bypass Vulnerability
Arkeia Appliance Multiple Vulnerabilities
Apache Struts2 Showcase Arbitrary Java Method Execution vulnerability
3Com OfficeConnect VPN Firewall Default Password Security Bypass Vulnerability
AlienVault OSSIM SQL Injection and Remote Code Execution Vulnerabilities

Take action and discover your vulnerabilities