Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

wordpress wordpress 3.1.1 vulnerabilities and exploits

(subscribe to this query)

NA
CVE-2011-3126
WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 allows remote attackers to determine usernames of non-authors via canonical redirects....
Wordpress Wordpress 3.1.2Wordpress Wordpress 3.2Wordpress Wordpress 3.1Wordpress Wordpress 3.1.1
NA
CVE-2011-3129
The file upload functionality in WordPress 3.1 before 3.1.3 and 3.2 before Beta 2, when running "on hosts with dangerous security settings," has unknown impact and attack vectors, possibly related to dangerous filenames....
Wordpress Wordpress 3.1Wordpress Wordpress 3.1.1Wordpress Wordpress 3.1.2Wordpress Wordpress 3.2
NA
CVE-2011-3127
WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 does not prevent rendering for (1) admin or (2) login pages inside a frame in a third-party HTML document, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site....
Wordpress Wordpress 3.1Wordpress Wordpress 3.2Wordpress Wordpress 3.1.1Wordpress Wordpress 3.1.2
NA
CVE-2011-3125
Unspecified vulnerability in WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 has unknown impact and attack vectors related to "Various security hardening."...
Wordpress Wordpress 3.1Wordpress Wordpress 3.1.1Wordpress Wordpress 3.1.2Wordpress Wordpress 3.2
NA
CVE-2011-3128
WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 treats unattached attachments as published, which might allow remote attackers to obtain sensitive data via vectors related to wp-includes/post.php....
Wordpress Wordpress 3.1Wordpress Wordpress 3.1.1Wordpress Wordpress 3.1.2Wordpress Wordpress 3.2
NA
CVE-2011-3130
wp-includes/taxonomy.php in WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 has unknown impact and attack vectors related to "Taxonomy query hardening," possibly involving SQL injection....
Wordpress Wordpress 3.2Wordpress Wordpress 3.1.1Wordpress Wordpress 3.1.2Wordpress Wordpress 3.1
NA
CVE-2011-3122
Unspecified vulnerability in WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 has unknown impact and attack vectors related to "Media security."...
Wordpress Wordpress 3.2Wordpress Wordpress 3.1Wordpress Wordpress 3.1.1Wordpress Wordpress 3.1.2
NA
CVE-2012-6633
Cross-site scripting (XSS) vulnerability in wp-includes/default-filters.php in WordPress before 3.3.3 allows remote attackers to inject arbitrary web script or HTML via an editable slug field....
Wordpress Wordpress 3.2Wordpress Wordpress 3.1.4Wordpress Wordpress 3.1.3Wordpress Wordpress 3.1.2Wordpress WordpressWordpress Wordpress 3.0.3Wordpress Wordpress 3.0.2Wordpress Wordpress 3.0.1Wordpress Wordpress 3.0Wordpress Wordpress 3.3Wordpress Wordpress 3.1.1Wordpress Wordpress 3.0.6Wordpress Wordpress 3.0.4Wordpress Wordpress 3.3.1Wordpress Wordpress 3.2.1Wordpress Wordpress 3.1Wordpress Wordpress 3.0.5
NA
CVE-2012-6635
wp-admin/includes/class-wp-posts-list-table.php in WordPress before 3.3.3 does not properly restrict excerpt-view access, which allows remote authenticated users to obtain sensitive information by visiting a draft....
Wordpress Wordpress 3.3.1Wordpress Wordpress 3.3Wordpress Wordpress 3.2.1Wordpress Wordpress 3.2Wordpress Wordpress 3.0Wordpress Wordpress 3.1.1Wordpress Wordpress 3.1Wordpress Wordpress 3.0.6Wordpress Wordpress 3.0.5Wordpress WordpressWordpress Wordpress 3.1.3Wordpress Wordpress 3.0.3Wordpress Wordpress 3.0.1Wordpress Wordpress 3.1.4Wordpress Wordpress 3.1.2Wordpress Wordpress 3.0.4Wordpress Wordpress 3.0.2
NA
CVE-2012-6634
wp-admin/media-upload.php in WordPress before 3.3.3 allows remote attackers to obtain sensitive information or bypass intended media-attachment restrictions via a post_id value....
Wordpress Wordpress 3.2.1Wordpress Wordpress 3.2Wordpress Wordpress 3.1.4Wordpress Wordpress 3.0.6Wordpress Wordpress 3.0.5Wordpress Wordpress 3.0.4Wordpress Wordpress 3.0.3Wordpress Wordpress 3.3.1Wordpress Wordpress 3.1.2Wordpress Wordpress 3.1Wordpress Wordpress 3.0.2Wordpress Wordpress 3.0Wordpress WordpressWordpress Wordpress 3.3Wordpress Wordpress 3.1.3Wordpress Wordpress 3.1.1Wordpress Wordpress 3.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
seacmsCVE-2023-28393remote code executionauthentication bypassopen redirectacymailingCVE-2023-43339CVE-2023-3664openstackpopup builderCVE-2023-21987CVE-2023-21991CVE-2023-3550
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook