Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

wordpress wordpress 4.7.5 vulnerabilities and exploits

(subscribe to this query)

5
CVSSv2
CVE-2017-14722
Before version 4.8.2, WordPress allowed a Directory Traversal attack in the Customizer component via a crafted theme filename....
Wordpress Wordpress 4.7Wordpress Wordpress 4.7.1Wordpress Wordpress 4.7.2Wordpress Wordpress 4.7.3Wordpress Wordpress 4.7.4Wordpress Wordpress 4.7.5Wordpress Wordpress 4.8Wordpress Wordpress 4.8.1
5
CVSSv2
CVE-2017-14719
Before version 4.8.2, WordPress was vulnerable to a directory traversal attack during unzip operations in the ZipArchive and PclZip components....
Wordpress Wordpress 3.0Wordpress Wordpress 3.0.1Wordpress Wordpress 3.0.2Wordpress Wordpress 3.0.3Wordpress Wordpress 3.0.4Wordpress Wordpress 3.0.5Wordpress Wordpress 3.0.6Wordpress Wordpress 3.1Wordpress Wordpress 3.1.1Wordpress Wordpress 3.1.2Wordpress Wordpress 3.1.3Wordpress Wordpress 3.1.4Wordpress Wordpress 3.2Wordpress Wordpress 3.2.1Wordpress Wordpress 3.3Wordpress Wordpress 3.3.1Wordpress Wordpress 3.3.2Wordpress Wordpress 3.3.3Wordpress Wordpress 3.4Wordpress Wordpress 3.4.1Wordpress Wordpress 3.4.2Wordpress Wordpress 3.5Wordpress Wordpress 3.5.1Wordpress Wordpress 3.5.2Wordpress Wordpress 3.6Wordpress Wordpress 3.6.1Wordpress Wordpress 3.7Wordpress Wordpress 3.7.1Wordpress Wordpress 3.7.2Wordpress Wordpress 3.7.3Wordpress Wordpress 3.7.4Wordpress Wordpress 3.7.5Wordpress Wordpress 3.7.6Wordpress Wordpress 3.7.7Wordpress Wordpress 3.7.8Wordpress Wordpress 3.7.9Wordpress Wordpress 3.7.10Wordpress Wordpress 3.7.11Wordpress Wordpress 3.7.12Wordpress Wordpress 3.7.13Wordpress Wordpress 3.7.14Wordpress Wordpress 3.7.15Wordpress Wordpress 3.7.16Wordpress Wordpress 3.7.17Wordpress Wordpress 3.7.18Wordpress Wordpress 3.7.19Wordpress Wordpress 3.7.20Wordpress Wordpress 3.7.21Wordpress Wordpress 3.7.22Wordpress Wordpress 3.8Wordpress Wordpress 3.8.1Wordpress Wordpress 3.8.2Wordpress Wordpress 3.8.3Wordpress Wordpress 3.8.4Wordpress Wordpress 3.8.5Wordpress Wordpress 3.8.6Wordpress Wordpress 3.8.7Wordpress Wordpress 3.8.8Wordpress Wordpress 3.8.9Wordpress Wordpress 3.8.10Wordpress Wordpress 3.8.11Wordpress Wordpress 3.8.12Wordpress Wordpress 3.8.13Wordpress Wordpress 3.8.14Wordpress Wordpress 3.8.15Wordpress Wordpress 3.8.16Wordpress Wordpress 3.8.17Wordpress Wordpress 3.8.18Wordpress Wordpress 3.8.19Wordpress Wordpress 3.8.20Wordpress Wordpress 3.8.21Wordpress Wordpress 3.8.22Wordpress Wordpress 3.9Wordpress Wordpress 3.9.1Wordpress Wordpress 3.9.2Wordpress Wordpress 3.9.3Wordpress Wordpress 3.9.4Wordpress Wordpress 3.9.5Wordpress Wordpress 3.9.6Wordpress Wordpress 3.9.7Wordpress Wordpress 3.9.8Wordpress Wordpress 3.9.9Wordpress Wordpress 3.9.10Wordpress Wordpress 3.9.11Wordpress Wordpress 3.9.12Wordpress Wordpress 3.9.13Wordpress Wordpress 3.9.14Wordpress Wordpress 3.9.15Wordpress Wordpress 3.9.16Wordpress Wordpress 3.9.17Wordpress Wordpress 3.9.18Wordpress Wordpress 3.9.19Wordpress Wordpress 3.9.20Wordpress Wordpress 4.0Wordpress Wordpress 4.0.1Wordpress Wordpress 4.0.2Wordpress Wordpress 4.0.3Wordpress Wordpress 4.0.4Wordpress Wordpress 4.0.5Wordpress Wordpress 4.0.6Wordpress Wordpress 4.0.7Wordpress Wordpress 4.0.8Wordpress Wordpress 4.0.9Wordpress Wordpress 4.0.10Wordpress Wordpress 4.0.11Wordpress Wordpress 4.0.12Wordpress Wordpress 4.0.13Wordpress Wordpress 4.0.14Wordpress Wordpress 4.0.15Wordpress Wordpress 4.0.16Wordpress Wordpress 4.0.17Wordpress Wordpress 4.0.18Wordpress Wordpress 4.0.19Wordpress Wordpress 4.1Wordpress Wordpress 4.1.1Wordpress Wordpress 4.1.2Wordpress Wordpress 4.1.3Wordpress Wordpress 4.1.4Wordpress Wordpress 4.1.5Wordpress Wordpress 4.1.6Wordpress Wordpress 4.1.7Wordpress Wordpress 4.1.8Wordpress Wordpress 4.1.9Wordpress Wordpress 4.1.10Wordpress Wordpress 4.1.11Wordpress Wordpress 4.1.12Wordpress Wordpress 4.1.13Wordpress Wordpress 4.1.14Wordpress Wordpress 4.1.15Wordpress Wordpress 4.1.16Wordpress Wordpress 4.1.17Wordpress Wordpress 4.1.18Wordpress Wordpress 4.1.19Wordpress Wordpress 4.2Wordpress Wordpress 4.2.1Wordpress Wordpress 4.2.2Wordpress Wordpress 4.2.3Wordpress Wordpress 4.2.4Wordpress Wordpress 4.2.5Wordpress Wordpress 4.2.6Wordpress Wordpress 4.2.7Wordpress Wordpress 4.2.8Wordpress Wordpress 4.2.9Wordpress Wordpress 4.2.10Wordpress Wordpress 4.2.11Wordpress Wordpress 4.2.12Wordpress Wordpress 4.2.13Wordpress Wordpress 4.2.14Wordpress Wordpress 4.2.15Wordpress Wordpress 4.2.16Wordpress Wordpress 4.3Wordpress Wordpress 4.3.1Wordpress Wordpress 4.3.2Wordpress Wordpress 4.3.3Wordpress Wordpress 4.3.4Wordpress Wordpress 4.3.5Wordpress Wordpress 4.3.6Wordpress Wordpress 4.3.7Wordpress Wordpress 4.3.8Wordpress Wordpress 4.3.9Wordpress Wordpress 4.3.10Wordpress Wordpress 4.3.11Wordpress Wordpress 4.3.12Wordpress Wordpress 4.4Wordpress Wordpress 4.4.1Wordpress Wordpress 4.4.2Wordpress Wordpress 4.4.3Wordpress Wordpress 4.4.4Wordpress Wordpress 4.4.5Wordpress Wordpress 4.4.6Wordpress Wordpress 4.4.7Wordpress Wordpress 4.4.8Wordpress Wordpress 4.4.9Wordpress Wordpress 4.4.10Wordpress Wordpress 4.4.11Wordpress Wordpress 4.5Wordpress Wordpress 4.5.1Wordpress Wordpress 4.5.2Wordpress Wordpress 4.5.3Wordpress Wordpress 4.5.4Wordpress Wordpress 4.5.5Wordpress Wordpress 4.5.6Wordpress Wordpress 4.5.7Wordpress Wordpress 4.5.8Wordpress Wordpress 4.5.9Wordpress Wordpress 4.5.10Wordpress Wordpress 4.6Wordpress Wordpress 4.6.1Wordpress Wordpress 4.6.2Wordpress Wordpress 4.6.3Wordpress Wordpress 4.6.4Wordpress Wordpress 4.6.5Wordpress Wordpress 4.6.6Wordpress Wordpress 4.6.7Wordpress Wordpress 4.7Wordpress Wordpress 4.7.1Wordpress Wordpress 4.7.2Wordpress Wordpress 4.7.3Wordpress Wordpress 4.7.4Wordpress Wordpress 4.7.5Wordpress Wordpress 4.8Wordpress Wordpress 4.8.1
5
CVSSv2
CVE-2017-9066
In WordPress before 4.7.5, there is insufficient redirect validation in the HTTP class, leading to SSRF....
Wordpress WordpressDebian Debian Linux 8.0Debian Debian Linux 9.0
4.3
CVSSv2
CVE-2017-9063
In WordPress before 4.7.5, a cross-site scripting (XSS) vulnerability related to the Customizer exists, involving an invalid customization session....
Wordpress WordpressDebian Debian Linux 8.0Debian Debian Linux 9.0
6.8
CVSSv2
CVE-2017-9064
In WordPress before 4.7.5, a Cross Site Request Forgery (CSRF) vulnerability exists in the filesystem credentials dialog because a nonce is not required for updating credentials....
Wordpress WordpressDebian Debian Linux 8.0Debian Debian Linux 9.0
5
CVSSv2
CVE-2017-9062
In WordPress before 4.7.5, there is improper handling of post meta data values in the XML-RPC API....
Wordpress WordpressDebian Debian Linux 8.0Debian Debian Linux 9.0
4.3
CVSSv2
CVE-2017-9061
In WordPress before 4.7.5, a cross-site scripting (XSS) vulnerability exists when attempting to upload very large files, because the error message does not properly restrict presentation of the filename....
Wordpress WordpressDebian Debian Linux 8.0Debian Debian Linux 9.0
5
CVSSv2
CVE-2017-9065
In WordPress before 4.7.5, there is a lack of capability checks for post meta data in the XML-RPC API....
Wordpress WordpressDebian Debian Linux 8.0Debian Debian Linux 9.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middleCVE-2021-20661CVE-2020-4953CVE-2018-19518CVE-2021-27645CVE-2021-3156CVE-2021-26684deserializationwireless