Description

wp-admin/media-upload.php in WordPress before 3.3.3 allows remote attackers to obtain sensitive information or bypass intended media-attachment restrictions via a post_id value.

Remediation

References

CVE-2012-6634

Related Vulnerabilities

SharePoint CVE-2022-41036 Vulnerability (CVE-2022-41036)

WordPress Plugin YITH WooCommerce Compare PHP Object Injection (2.0.9)

SharePoint CVE-2020-1444 Vulnerability (CVE-2020-1444)

MySQL CVE-2018-3203 Vulnerability (CVE-2018-3203)

Mailman Improper Restriction of Excessive Authentication Attempts Vulnerability (CVE-2021-42096)

Severity

Medium

Classification

CVE-2012-6634 CWE-264

Tags

Missing Update Known Vulnerabilities