CVE-2011-3129

Sažetak

The file upload functionality in WordPress 3.1 before 3.1.3 and 3.2 before Beta 2, when running "on hosts with dangerous security settings," has unknown impact and attack vectors, possibly related to dangerous filenames.

Reference

http://secunia.com/advisories/49138
http://wordpress.org/news/2011/05/wordpress-3-1-3/
http://www.debian.org/security/2012/dsa-2470
http://www.securityfocus.com/bid/47995

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

31-05-2016 - 14:37

Objavljeno

10-08-2011 - 21:55