NVD

Id
2308  
Name
CVE-2008-2392  
Description
Unrestricted file upload vulnerability in WordPress 2.5.1 and earlier might allow remote authenticated administrators to upload and execute arbitrary PHP files via the Upload section in the Write Tabs area of the dashboard.  
Reject
 
CVSS Version
2  
CVSS Score
9  
Severity
High  
CVSS Base Score
9  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:C/I:C/A:C)  
Pub Date
2017-01-03  
Published
2008-05-21  
Modified Date
2009-01-29  
Seq
2008-2392  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
14875 2308 CVE-2008-2392 3897  View
14876 2308 CVE-2008-2392 20080519 Wordpress Malicious File Execution Vulnerability  View
14877 2308 CVE-2008-2392 29276  View
14878 2308 CVE-2008-2392 wordpress-writetabs-file-upload(42561)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
50510 JVNDB-2008-005820 WordPress における任意のコードを実行される脆弱性 WordPress は、無制限にファイルをアップロードする不備があるため、任意の PHP コードをアップロードされる、および実行される脆弱性が存在します。 CVE-2008-2392 32505 CVE-2008-2392 2308 9 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-005820.html 2008-05-21 2012-12-20 View