Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2013-2203HistoryJul 08, 2013 - 8:55 p.m.
CVE-2013-2203
2013-07-0820:55:01
Debian Security Bug Tracker
security-tracker.debian.org
11
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
71.2%
WordPress before 3.5.2, when the uploads directory forbids write access, allows remote attackers to obtain sensitive information via an invalid upload request, which reveals the absolute path in an XMLHttpRequest error message.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | wordpress | < 3.5.2+dfsg-1 | wordpress_3.5.2+dfsg-1_all.deb |
| Debian | 11 | all | wordpress | < 3.5.2+dfsg-1 | wordpress_3.5.2+dfsg-1_all.deb |
| Debian | 999 | all | wordpress | < 3.5.2+dfsg-1 | wordpress_3.5.2+dfsg-1_all.deb |
| Debian | 13 | all | wordpress | < 3.5.2+dfsg-1 | wordpress_3.5.2+dfsg-1_all.deb |
Related
patchstack
patchstack
WordPress <= 3.5.1 - Full Path Disclosure
2013-02-19 00:00:00
WordPress <= 3.5.1 - Full Path Disclosure
2013-02-19 00:00:00
cvelist
cvelist
CVE-2013-2203
2013-07-08 20:00:00
ubuntucve
ubuntucve
CVE-2013-2203
2013-07-08 00:00:00
cve
cve
CVE-2013-2203
2013-07-08 20:55:01
nvd
nvd
CVE-2013-2203
2013-07-08 20:55:01
prion
prion
Design/Logic Flaw
2013-07-08 20:55:00
freebsd
freebsd
wordpress -- multiple vulnerabilities
2013-06-21 00:00:00
nessus
nessus
FreeBSD : wordpress -- multiple vulnerabilities (049332d2-f6e1-11e2-82f3-000c29ee3065)
2013-07-28 00:00:00
Fedora 19 : wordpress-3.5.2-1.fc19 (2013-11590)
2013-07-12 00:00:00
Fedora 17 : wordpress-3.5.2-1.fc17 (2013-11649)
2013-07-12 00:00:00
openvas
openvas
Fedora Update for wordpress FEDORA-2013-11590
2013-08-20 00:00:00
Fedora Update for wordpress FEDORA-2013-11590
2013-08-20 00:00:00
Debian: Security Advisory (DSA-2718-1)
2013-06-30 00:00:00
securityvulns
securityvulns
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2013-07-08 00:00:00
[SECURITY] [DSA 2718-1] wordpress security update
2013-07-08 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: wordpress-3.5.2-1.fc19
2013-07-03 01:36:05
[SECURITY] Fedora 19 Update: wordpress-3.6.1-1.fc19
2013-09-26 06:04:43
[SECURITY] Fedora 18 Update: wordpress-3.5.2-1.fc18
2013-07-03 01:37:44
osv
osv
wordpress - several
2013-07-01 00:00:00
debian
debian
[SECURITY] [DSA 2718-1] wordpress security update
2013-07-02 19:50:33
mageia
mageia
Updated wordpress package fixes security vulnerabilities
2013-07-01 23:19:24
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
71.2%
Related for DEBIANCVE:CVE-2013-2203