Lucene search
Ryan DewhurstWPVDB-ID:1A693E57-F99C-4DF6-93DD-0CDC92FD0526HistoryFeb 19, 2019 - 12:00 a.m.
WordPress 3.7-5.0 (except 4.9.9) - Authenticated Code Execution
2019-02-1900:00:00
Ryan Dewhurst
wpscan.com
56
EPSS
0.943
Percentile
99.3%
An attacker with author privileges can execute arbitrary code by uploading a crafted image containing PHP code in the Exif metadata.
Related
packetstorm
packetstorm
WordPress 5.0.0 crop-image Shell Upload
2019-04-04 00:00:00
WordPress 5.0.0 Remote Code Execution
2021-02-01 00:00:00
attackerkb
attackerkb
Wordpress Post Meta Entry RCE
2019-02-20 00:00:00
ubuntucve
ubuntucve
CVE-2019-8942
2019-02-20 00:00:00
CVE-2019-8943
2019-02-20 00:00:00
osv
osv
CVE-2019-8942
2019-02-20 03:29:00
CVE-2019-8943
2019-02-20 03:29:00
wordpress - security update
2019-04-01 00:00:00
openvas
openvas
WordPress RCE Vulnerability (CVE-2019-8942) - Linux
2019-02-22 00:00:00
WordPress RCE Vulnerability (CVE-2019-8942) - Windows
2019-02-22 00:00:00
WordPress < 5.1 Path Traversal Vulnerability - Windows
2019-02-22 00:00:00
prion
prion
Remote code execution
2019-02-20 03:29:00
Path traversal
2019-02-20 03:29:00
nvd
nvd
CVE-2019-8942
2019-02-20 03:29:00
CVE-2019-8943
2019-02-20 03:29:00
exploitdb
exploitdb
WordPress Core 5.0.0 - Crop-image Shell Upload (Metasploit)
2019-04-05 00:00:00
WordPress Core 5.0 - Remote Code Execution
2019-03-01 00:00:00
debiancve
debiancve
CVE-2019-8942
2019-02-20 03:29:00
CVE-2019-8943
2019-02-20 03:29:00
cve
cve
CVE-2019-8942
2019-02-20 03:29:00
CVE-2019-8943
2019-02-20 03:29:00
githubexploit
githubexploit
Exploit for Unrestricted Upload of File with Dangerous Type in Wordpress
2021-05-05 16:23:03
Exploit for Path Traversal in Wordpress
2021-02-01 12:47:28
metasploit
metasploit
WordPress Crop-image Shell Upload
2019-03-22 16:37:04
cvelist
cvelist
CVE-2019-8942
2019-02-20 03:00:00
CVE-2019-8943
2019-02-20 03:00:00
zdt
zdt
WordPress Core 5.0 - Remote Code Execution Exploit
2019-03-08 00:00:00
WordPress 5.0.0 crop-image Shell Upload Exploit
2019-04-05 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-02-21 07:48:00
Directory Traversal
2019-02-21 01:53:22
archlinux
archlinux
[ASA-201903-10] wordpress: directory traversal
2019-03-18 00:00:00
nessus
nessus
WordPress < 5.0.4 Directory Traversal Vulnerability
2019-05-30 00:00:00
Debian DLA-1742-1 : wordpress security update
2019-04-01 00:00:00
Debian DSA-4401-1 : wordpress - security update
2019-03-04 00:00:00
patchstack
patchstack
checkpoint_advisories
checkpoint_advisories
WordPress Core Directory Traversal (CVE-2019-8943)
2020-07-05 00:00:00
WordPress Core Local File Inclusion Remote Code Execution (CVE-2019-8942)
2019-02-20 00:00:00
debian
debian
[SECURITY] [DLA 1742-1] wordpress security update
2019-03-31 19:30:13
[SECURITY] [DSA 4401-1] wordpress security update
2019-03-01 07:03:31
[SECURITY] [DSA 4401-1] wordpress security update
2019-03-01 07:03:31