CVE

Id
36879  
CVE No.
CVE-2008-6762  
Status
Candidate  
Description
Open redirect vulnerability in wp-admin/upgrade.php in WordPress, probably 2.6.x, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the backto parameter.  
Phase
Assigned (20090428)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
401510 36879 CVE-2008-6762 BUGTRAQ:20081222 [ISecAuditors Security Advisories] Wordpress is vulnerable to an unauthorized upgrade and XSS  View
401511 36879 CVE-2008-6762 URL:http://archives.neohapsis.com/archives/bugtraq/2008-12/0226.html  View
401512 36879 CVE-2008-6762 DEBIAN:DSA-1871  View
401513 36879 CVE-2008-6762 URL:http://www.debian.org/security/2009/dsa-1871  View
401514 36879 CVE-2008-6762 OSVDB:52213  View
401515 36879 CVE-2008-6762 URL:http://osvdb.org/52213  View
401516 36879 CVE-2008-6762 XF:wordpress-upgrade-phishing(50382)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
44570 JVNDB-2009-005577 ViArt Shop の cart_save.php におけるサービス運用妨害 (DoS) の脆弱性 ViArt Shop の cart_save.php には、サービス運用妨害 (過剰なショッピングカート) 状態となる脆弱性が存在します。 CVE-2008-6766 36879 5 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-005577.html  View