Published: 30/01/2017 Updated: 19/03/2019

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 5.3 | Impact Score: 1.4 | Exploitability Score: 3.9

VMScore: 446

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

wp-admin/includes/class-wp-press-this.php in Press This in WordPress prior to 4.7.2 does not properly restrict visibility of a taxonomy-assignment user interface, which allows remote malicious users to bypass intended access restrictions by reading terms.

Vulnerable Product	Search on Vulmon	Subscribe to Product
wordpress wordpress
debian debian linux 8.0
debian debian linux 9.0

Debian Bug report logs - #852767 wordpress: 472 security release (CVE-2017-5610 CVE-2017-5611 CVE-2017-5612) Package: src:wordpress; Maintainer for src:wordpress is Craig Small <csmall@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 27 Jan 2017 06:18:01 UTC Severity: grave Tags: fixed- ...

CWE-200 https://wordpress.org/news/2017/01/wordpress-4-7-2-security-release/https://github.com/WordPress/WordPress/commit/21264a31e0849e6ff793a06a17de877dd88ea454 https://codex.wordpress.org/Version_4.7.2 http://www.openwall.com/lists/oss-security/2017/01/28/5 http://www.securityfocus.com/bid/95816 https://wpvulndb.com/vulnerabilities/8729 http://www.securitytracker.com/id/1037731 http://www.debian.org/security/2017/dsa-3779 https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=852767

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-5610

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect