Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2005-2612HistoryAug 17, 2005 - 4:00 a.m.
CVE-2005-2612
2005-08-1704:00:00
Debian Security Bug Tracker
security-tracker.debian.org
10
wordpress
code injection
vulnerability
remote attackers
php
cookie
unix
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.082
Percentile
94.5%
Direct code injection vulnerability in WordPress 1.5.1.3 and earlier allows remote attackers to execute arbitrary PHP code via the cache_lastpostdate[server] cookie.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | wordpress | < 1.5.2-1 | wordpress_1.5.2-1_all.deb |
| Debian | 11 | all | wordpress | < 1.5.2-1 | wordpress_1.5.2-1_all.deb |
| Debian | 999 | all | wordpress | < 1.5.2-1 | wordpress_1.5.2-1_all.deb |
| Debian | 13 | all | wordpress | < 1.5.2-1 | wordpress_1.5.2-1_all.deb |
Related
exploitdb
exploitdb
nessus
nessus
WordPress Cookie 'cache_lastpostdate' Parameter PHP Code Injection
2005-08-11 00:00:00
packetstorm
packetstorm
WordPress cache_lastpostdate Arbitrary Code Execution
2015-03-24 00:00:00
WordPress cache_lastpostdate Arbitrary Code Execution
2009-10-30 00:00:00
nvd
nvd
CVE-2005-2612
2005-08-17 04:00:00
metasploit
metasploit
WordPress cache_lastpostdate Arbitrary Code Execution
2015-03-23 07:15:04
wpvulndb
wpvulndb
Wordpress <= 1.5.1.3 - Remote Code Execution
2014-08-01 00:00:00
cvelist
cvelist
CVE-2005-2612
2005-08-17 04:00:00
patchstack
patchstack
WordPress cache_lastpostdate - Arbitrary Code Execution
2010-07-03 00:00:00
cve
cve
CVE-2005-2612
2005-08-17 04:00:00
ubuntucve
ubuntucve
CVE-2005-2612
2005-08-17 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.082
Percentile
94.5%
Related for DEBIANCVE:CVE-2005-2612