CVE-2008-5695

Sažetak

wp-admin/options.php in WordPress MU before 1.3.2, and WordPress 2.3.2 and earlier, does not properly validate requests to update an option, which allows remote authenticated users with manage_options and upload_files capabilities to execute arbitrary code by uploading a PHP script and adding this script's pathname to active_plugins.

Reference

http://www.buayacorp.com/files/wordpress/wp-blog-option-overwrite.txt
http://secunia.com/advisories/28789
http://www.buayacorp.com/files/wordpress/wordpress-mu-options-overwrite.html
http://mu.wordpress.org/forums/topic.php?id=7534&page&replies=1
http://www.securityfocus.com/bid/27633
http://securityreason.com/securityalert/4798
https://www.exploit-db.com/exploits/5066

CVSS

Base:	8.5
Impact:	10.0
Exploitability:	6.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:S/C:C/I:C/A:C

Zadnje važnije ažuriranje

21-04-2021 - 14:43

Objavljeno

19-12-2008 - 18:30