Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

wordpress wordpress 4.7.5 vulnerabilities and exploits

(subscribe to this query)

5
CVSSv2
CVE-2017-9066
In WordPress before 4.7.5, there is insufficient redirect validation in the HTTP class, leading to SSRF....
5
CVSSv2
CVE-2017-9065
In WordPress before 4.7.5, there is a lack of capability checks for post meta data in the XML-RPC API....
5
CVSSv2
CVE-2017-9062
In WordPress before 4.7.5, there is improper handling of post meta data values in the XML-RPC API....
4.3
CVSSv2
CVE-2017-9063
In WordPress before 4.7.5, a cross-site scripting (XSS) vulnerability related to the Customizer exists, involving an invalid customization session....
6.8
CVSSv2
CVE-2017-9064
In WordPress before 4.7.5, a Cross Site Request Forgery (CSRF) vulnerability exists in the filesystem credentials dialog because a nonce is not required for updating credentials....
4.3
CVSSv2
CVE-2017-9061
In WordPress before 4.7.5, a cross-site scripting (XSS) vulnerability exists when attempting to upload very large files, because the error message does not properly restrict presentation of the filename....
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-29506CVE-2020-20092encryptionCVE-2021-21551arbitrary unspecifiedCVE-2020-23689CVE-2021-28476CVE-2021-20996
Vulnerability Notification Service
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook