CVE-2006-6017

WordPress before 2.0.5 does not properly store a profile containing a string representation of a serialized object, which allows remote authenticated users to cause a denial of service (application crash) via a string that represents a (1) malformed or (2) large serialized object, because the object triggers automatic unserialization for display.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*

Information

Published : 2006-11-21 15:07

Updated : 2008-09-05 14:13


NVD link : CVE-2006-6017

Mitre link : CVE-2006-6017


JSON object : View

Advertisement

dedicated server usa

Products Affected

wordpress

  • wordpress