Lucene search
MitreCVE-2014-5203HistoryAug 18, 2014 - 11:15 a.m.
CVE-2014-5203
2014-08-1811:15:26
mitre
web.nvd.nist.gov
55
cve
2014
5203
wp-includes
class-wp-customize-widgets.php
wordpress
remote attackers
arbitrary code
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.072
Percentile
94.0%
wp-includes/class-wp-customize-widgets.php in the widget implementation in WordPress 3.9.x before 3.9.2 might allow remote attackers to execute arbitrary code via crafted serialized data.
Affected configurations
Node
wordpresswordpressMatch3.9.0
ORwordpresswordpressMatch3.9.1
Related
ubuntucve
ubuntucve
CVE-2014-5203
2014-08-18 00:00:00
prion
prion
Information disclosure
2014-08-18 11:15:00
patchstack
patchstack
WordPress <= 3.9.1 - Unsafe Serialization
2014-08-13 00:00:00
debiancve
debiancve
CVE-2014-5203
2014-08-18 11:15:26
nvd
nvd
CVE-2014-5203
2014-08-18 11:15:26
cvelist
cvelist
CVE-2014-5203
2014-08-18 10:00:00
wpvulndb
wpvulndb
WordPress 3.9 & 3.9.1 Unlikely Code Execution
2014-09-16 17:10:42
nessus
nessus
Fedora 19 : wordpress-3.9.2-3.fc19 (2014-9270)
2014-08-23 00:00:00
Fedora 20 : wordpress-3.9.2-3.fc20 (2014-9264)
2014-08-22 00:00:00
WordPress < 3.7.4 / 3.8.4 / 3.9.2 Multiple Vulnerabilities
2014-08-12 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: wordpress-3.9.2-3.fc20
2014-08-21 09:45:10
[SECURITY] Fedora 19 Update: wordpress-3.9.2-3.fc19
2014-08-23 01:58:51
openvas
openvas
Fedora Update for wordpress FEDORA-2014-9264
2014-08-22 00:00:00
Fedora Update for wordpress FEDORA-2014-9270
2014-08-23 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.072
Percentile
94.0%
Related for CVE-2014-5203