WordPress MU 2.7.1

CPE Details

WordPress MU 2.7.1
2.7.1
2018-11-19
20h44 +00:00
2018-11-19
20h44 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:wordpress:wordpress_mu:2.7.1:*:*:*:*:*:*:*

Informations

Vendor

wordpress

Product

wordpress_mu

Version

2.7.1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2009-2335 2009-07-10 18h25 +00:00 WordPress and WordPress MU before 2.8.1 exhibit different behavior for a failed login attempt depending on whether the user account exists, which allows remote attackers to enumerate valid usernames. NOTE: the vendor reportedly disputes the significance of this issue, indicating that the behavior exists for "user convenience."
5
CVE-2009-2336 2009-07-10 18h25 +00:00 The forgotten mail interface in WordPress and WordPress MU before 2.8.1 exhibits different behavior for a password request depending on whether the user account exists, which allows remote attackers to enumerate valid usernames. NOTE: the vendor reportedly disputes the significance of this issue, indicating that the behavior exists for "user convenience."
5
CVE-2008-4671 2008-10-22 08h00 +00:00 Cross-site scripting (XSS) vulnerability in wp-admin/wp-blogs.php in Wordpress MU (WPMU) before 2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) s and (2) ip_address parameters.
4.3