Lucene search
HistoryApr 28, 2009 - 4:30 p.m.
CVE-2008-6767
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
6.5 Medium
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
79.4%
wp-admin/upgrade.php in WordPress, probably 2.6.x, allows remote attackers to upgrade the application, and possibly cause a denial of service (application outage), via a direct request.
Affected configurations
Node
wordpresswordpressMatch2.6
Related
prion
prion
Server side request forgery (ssrf)
2009-04-28 16:30:00
patchstack
patchstack
WordPress <= 2.6.9 - Denial Of Service Attacks
2009-04-28 00:00:00
cvelist
cvelist
CVE-2008-6767
2009-04-28 16:00:00
ubuntucve
ubuntucve
CVE-2008-6767
2009-04-28 00:00:00
cve
cve
CVE-2008-6767
2009-04-28 16:30:03
debiancve
debiancve
CVE-2008-6767
2009-04-28 16:30:03
openvas
openvas
WordPress Multiple Vulnerabilities
2009-05-11 00:00:00
Debian Security Advisory DSA 1871-1 (wordpress)
2009-09-02 00:00:00
Debian Security Advisory DSA 1871-2 (wordpress)
2009-09-02 00:00:00
osv
osv
wordpress - several vulnerabilities
2009-08-23 00:00:00
wordpress - regression fix
2009-08-23 00:00:00
nessus
nessus
Debian DSA-1871-1 : wordpress - several vulnerabilities
2010-02-24 00:00:00
debian
debian
[SECURITY] [DSA 1871-2] New wordpress packages fix regression
2009-08-27 01:39:01
[SECURITY] [DSA 1871-1] New wordpress packages fix several vulnerabilities
2009-08-23 03:41:14
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
6.5 Medium
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
79.4%
Related for NVD:CVE-2008-6767