Direct code injection vulnerability in WordPress 1.5.1.3 and earlier allows remote attackers to execute arbitrary PHP code via the cache_lastpostdate[server] cookie.
References
Link | Resource |
---|---|
http://archives.neohapsis.com/archives/fulldisclosure/2005-08/0234.html | Exploit |
http://secunia.com/advisories/16386 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2005-08-16 21:00
Updated : 2008-09-05 13:52
NVD link : CVE-2005-2612
Mitre link : CVE-2005-2612
JSON object : View
CWE
Products Affected
wordpress
- wordpress