Vulnerability Details : CVE-2008-5695
wp-admin/options.php in WordPress MU before 1.3.2, and WordPress 2.3.2 and earlier, does not properly validate requests to update an option, which allows remote authenticated users with manage_options and upload_files capabilities to execute arbitrary code by uploading a PHP script and adding this script's pathname to active_plugins.
Vulnerability category: Input validationExecute code
Threat overview for CVE-2008-5695
Top countries where our scanners detected CVE-2008-5695
Top open port discovered on systems with this issue
80
IPs affected by CVE-2008-5695 3
Find out if you* are
affected by CVE-2008-5695!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2008-5695
3.69%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 91 %
Percentile, the proportion of vulnerabilities that are scored at or less