Lucene search
RootSSV:62212HistoryApr 17, 2014 - 12:00 a.m.
WordPress Jetpack插件安全绕过漏洞
2014-04-1700:00:00
Root
www.seebug.org
46
0.005 Low
EPSS
Percentile
75.5%
Bugtraq ID:66789
CVE ID:CVE-2014-0173
WordPress是一种使用PHP语言开发的博客平台,用户可以在支持PHP和MySQL数据库的服务器上架设自己的网志。
WordPress Jetpack插件访问XML-RPC服务时不正确校验授权,允许攻击者利用漏洞执行受限操作。
0
WordPress Jetpack Plugin 2.x
WordPress Jetpack Plugin 2.9.3版本已修复该漏洞,建议用户下载使用:
http://wordpress.org/plugins/jetpack/
Related
prion
prion
Information disclosure
2014-04-22 13:06:00
nessus
nessus
Jetpack Plugin for WordPress Security Bypass
2014-04-23 00:00:00
patchstack
patchstack
WordPress Jetpack Plugin <= 2.9.2 - Security BYPASS
2013-12-03 00:00:00
veracode
veracode
Security Bypass
2017-07-14 10:34:26
wpvulndb
wpvulndb
Jetpack <= 2.9.2 - class.jetpack.php XML-RPC Access Control Bypass
2014-08-01 10:59:13
cve
cve
CVE-2014-0173
2014-04-22 13:06:27
cvelist
cvelist
CVE-2014-0173
2014-04-21 14:00:00
nvd
nvd
CVE-2014-0173
2014-04-22 13:06:27