Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2018-20148

Published: 14/12/2018 Updated: 04/03/2019
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Wordpress

Vulnerability Summary

In WordPress prior to 4.9.9 and 5.x prior to 5.0.1, contributors could conduct PHP object injection attacks via crafted metadata in a wp.getMediaItem XMLRPC call. This is caused by mishandling of serialized data at phar:// URLs in the wp_get_attachment_thumb_file function in wp-includes/post.php.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

wordpress wordpress

debian debian linux 8.0

debian debian linux 9.0

Vendor Advisories

Debian CVElist Bug Report Logs: wordpress: Several security issues versions 3.8-5.0
Debian Bug report logs - #916403 wordpress: Several security issues versions 38-50 Package: src:wordpress; Maintainer for src:wordpress is Craig Small <csmall@debianorg>; Reported by: Craig Small <csmall@debianorg> Date: Thu, 13 Dec 2018 23:51:02 UTC Severity: normal Tags: security, upstream Found in version wor ...
Debian Security Advisories: DSA-4401-1 wordpress -- security update
Several vulnerabilities were discovered in Wordpress, a web blogging tool They allowed remote attackers to perform various Cross-Side Scripting (XSS) and PHP injections attacks, delete files, leak potentially sensitive data, create posts of unauthorized types, or cause denial-of-service by application crash For the stable distribution (stretch), ...

Github Repositories

https://github.com/Byebyesky/IT-Security-Projekt

Analyse von vier Sicherheitslücken in Wordpress

Sicherheit von Wordpress In-depth analyse und Proof-Of-Concept Exploits der folgenden CVEs: SQL-Injection: CVE-2017-14723 XSS: CVE-2017-14718, CVE-2017-14721 Phar-Unserialisation: CVE-2018-20148 Dokumente Enthält das Whitepaper und die von uns genutzten Präsentationsslides POC Enthält die von uns bei den Livedemos benutzten Proof-Of-Concept Exploits

https://github.com/tthseus/WooCommerce-CVEs

CVE 2018-20148 and 2019-9168

WooCommerce CVEs presentation CVE 2018-20148 PHP object injection via Metadata Phar:// and 2019-9168 WooCommerce before 355 allows XSS via a Photoswipe caption

References

CWE-502https://wordpress.org/news/2018/12/wordpress-5-0-1-security-release/https://www.zdnet.com/article/wordpress-vulnerability-affects-a-third-of-most-popular-websites-online/https://www.zdnet.com/article/wordpress-plugs-bug-that-led-to-google-indexing-some-user-passwords/https://wordpress.org/support/wordpress-version/version-5-0-1/https://codex.wordpress.org/Version_4.9.9https://blog.secarma.co.uk/labs/near-phar-dangerous-unserialization-wherever-you-arehttps://wpvulndb.com/vulnerabilities/9171http://www.securityfocus.com/bid/106220https://lists.debian.org/debian-lts-announce/2019/02/msg00019.htmlhttps://www.debian.org/security/2019/dsa-4401https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916403https://nvd.nist.govhttps://github.com/Byebyesky/IT-Security-Projekthttps://www.debian.org/security/2019/dsa-4401
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028CVE-2024-32406CVE-2024-25624IMAPCVE-2024-2310CVE-2024-0874CVE-2024-20359XXEremote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook