NVD

Id
52765  
Name
CVE-2007-0541  
Description
WordPress allows remote attackers to determine the existence of arbitrary files, and possibly read portions of certain files, via pingback service calls with a source URI that corresponds to a local pathname, which triggers different fault codes for existing and non-existing files, and in certain configurations causes a brief file excerpt to be published as a blog comment.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-07  
Published
2007-01-29  
Modified Date
2008-09-05  
Seq
2007-0541  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
266703 52765 CVE-2007-0541 2191  View
266704 52765 CVE-2007-0541 20070124 Weaknesses in Pingback Design  View
266705 52765 CVE-2007-0541 20070124 Multiple Remote Vulnerabilities in Wordpress  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
56325 JVNDB-2007-005017 WordPress における任意のファイルの存在を特定される脆弱性 WordPress には、任意のファイルの存在を特定される、および特定のファイルの一部を読まれる脆弱性が存在します。 CVE-2007-0541 23896 CVE-2007-0541 52765 5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-005017.html 2007-01-29 2012-12-20 View