CVE-2010-0682

2010-02-2320:30:00

Debian Security Bug Tracker

security-tracker.debian.org

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

EPSS

0.006

Percentile

78.5%

JSON

WordPress 2.9 before 2.9.2 allows remote authenticated users to read trash posts from other authors via a direct request with a modified p parameter.

OSVersionArchitecturePackageVersionFilename
Debian12allwordpress< 2.9.2-1wordpress_2.9.2-1_all.deb
Debian11allwordpress< 2.9.2-1wordpress_2.9.2-1_all.deb
Debian999allwordpress< 2.9.2-1wordpress_2.9.2-1_all.deb
Debian13allwordpress< 2.9.2-1wordpress_2.9.2-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	wordpress	< 2.9.2-1	wordpress_2.9.2-1_all.deb
Debian	11	all	wordpress	< 2.9.2-1	wordpress_2.9.2-1_all.deb
Debian	999	all	wordpress	< 2.9.2-1	wordpress_2.9.2-1_all.deb
Debian	13	all	wordpress	< 2.9.2-1	wordpress_2.9.2-1_all.deb