[CLOSE] OSVDB ID : 16703 - Disclosed: 2005-05-19

Description:

WordPress contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker directly requests any one of a number of scripts that calls an unspecified function. The resulting error message will disclose the physical installation path, resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 59246 - Disclosed: 2006-09-06

Description:

(Description Provided by CVE) : WordPress 2.0.2 through 2.0.5 allows remote attackers to obtain sensitive information via a direct request for (1) 404.php, (2) akismet.php, (3) archive.php, (4) archives.php, (5) attachment.php, (6) blogger.php, (7) comments.php, (8) comments-popup.php, (9) dotclear.php, (10) footer.php, (11) functions.php, (12) header.php, (13) hello.php, (14) wp-content/themes/default/index.php, (15) links.php, (16) livejournal.php, (17) mt.php, (18) page.php, (19) rss.php, (20) searchform.php, (21) search.php, (22) sidebar.php, (23) single.php, (24) textpattern.php, (25) upgrade-functions.php, (26) upgrade-schema.php, or (27) wp-db-backup.php, which reveal the path in various error messages. NOTE: another researcher has disputed the details of this report, stating that version 2.0.5 does not exist. NOTE: the admin-footer.php, admin-functions.php, default-filters.php, edit-form-advanced.php, edit-link-form.php, edit-page-form.php, kses.php, locale.php, rss-functions.php, template-loader.php, and wp-db.php vectors are already covered by CVE-2006-0986. The edit-form-comment.php, vars.php, and wp-settings.php vectors are already covered by CVE-2005-4463. The menu-header.php vector is already covered by CVE-2005-2110.

[CLOSE] OSVDB ID : 72031 - Disclosed: 2011-03-29

Description:

WordPress contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker sends a direct request to multiple scripts, which discloses the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks. Consult the testing notes for a full list of affected scripts.

[CLOSE] OSVDB ID : 75906 - Disclosed: 2011-01-28

Description:

WordPress contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker sends a direct request to multiple scripts, which discloses the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 34158 - Disclosed: 2007-04-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 27633 - Disclosed: 2006-07-29

Description:

WordPress contains a flaw related to some unspecified errors that can cause unknown impacts. No further details have been provided.

[CLOSE] OSVDB ID : 40798 - Disclosed: 2007-02-20

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 40799 - Disclosed: 2007-07-21

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 40800 - Disclosed: 2007-08-06

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 60537 - Disclosed: 2009-08-04

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 31646 - Disclosed: 2006-03-10

Description:

Wordpress contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate unspecified variables upon submission to an unknown script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 39374 - Disclosed: 2007-07-31

Description:

Wordpress contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'options-discussion.php' script not properly sanitizing user-supplied input to the 'page_options' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 39371 - Disclosed: 2007-07-31

Description:

Wordpress contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'options-general.php' script not properly sanitizing user-supplied input to the 'page_options' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 39377 - Disclosed: 2007-07-31

Description:

Wordpress contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'options-misc.php' script not properly sanitizing user-supplied input to the 'page_options' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 39376 - Disclosed: 2007-07-31

Description:

Wordpress contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'options-permalink.php' script not properly sanitizing user-supplied input to the 'page_options' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 39375 - Disclosed: 2007-07-31

Description:

Wordpress contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'options-privacy.php' script not properly sanitizing user-supplied input to the 'page_options' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 39373 - Disclosed: 2007-07-31

Description:

Wordpress contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'options-reading.php' script not properly sanitizing user-supplied input to the 'page_options' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 39372 - Disclosed: 2007-07-31

Description:

Wordpress contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'options-writing.php' script not properly sanitizing user-supplied input to the 'page_options' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 51169 - Disclosed: 2007-12-05

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 50902 - Disclosed: 2008-12-22

Description:

(Description Provided by CVE) : Directory traversal vulnerability in getConfig.php in the Page Flip Image Gallery plugin 0.2.2 and earlier for WordPress, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the book_id parameter. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 25935 - Disclosed: 2006-05-25

Description:

WordPress contains a flaw that may allow a malicious user to spoof their IP address. The issue is triggered when an attacker registers with a specially crafted request with the PC_REMOTE_ADDR HTTP header set. It is possible that the flaw may allow a remote attacker to bypass IP based access restrictions resulting in a loss of integrity.

[CLOSE] OSVDB ID : 33007 - Disclosed: 2007-01-24

Description:

(Description Provided by CVE) : WordPress allows remote attackers to determine the existence of arbitrary files, and possibly read portions of certain files, via pingback service calls with a source URI that corresponds to a local pathname, which triggers different fault codes for existing and non-existing files, and in certain configurations causes a brief file excerpt to be published as a blog comment.

[CLOSE] OSVDB ID : 33006 - Disclosed: 2007-01-24

Description:

(Description Provided by CVE) : WordPress allows remote attackers to cause a denial of service (bandwidth or thread consumption) via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data.

[CLOSE] OSVDB ID : 33005 - Disclosed: 2007-01-24

Description:

(Description Provided by CVE) : The wp_remote_fopen function in WordPress before 2.1 allows remote attackers to cause a denial of service (bandwidth or thread consumption) via pingback service calls with a source URI that corresponds to a large file, which triggers a long download session without a timeout constraint.

[CLOSE] OSVDB ID : 19084 - Disclosed: 2005-07-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 34352 - Disclosed: 2007-04-11

Description:

WordPress contains a flaw that may allow a remote denial of service. The issue is triggered when multiple pingbacks with URLs to large files are used, and will result in high bandwidth usage.

[CLOSE] OSVDB ID : 37276 - Disclosed: 2007-09-12

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in Wordpress before 2.2.3 and Wordpress multi-user (MU) before 1.2.5a allow remote attackers to execute arbitrary SQL commands via the post_type parameter to the pingback.extensions.getPingbacks method in the XMLRPC interface, and other unspecified parameters related to "early database escaping" and missing validation of "query string like parameters."

[CLOSE] OSVDB ID : 55715 - Disclosed: 2009-07-08

Description:

WordPress plugin configuration module contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the exclude actions by term field upon submission to the module. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 68411 - Disclosed: 2010-08-13

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 40797 - Disclosed: 2006-10-17

Description:

(Description Provided by CVE) : Multiple directory traversal vulnerabilities in plugins/wp-db-backup.php in WordPress before 2.0.5 allow remote authenticated users to read or overwrite arbitrary files via directory traversal sequences in the (1) backup and (2) fragment parameters in a GET request.