Wordpress : Security Vulnerabilities, CVEs, (File inclusion) CVSS score >= 2
PHP remote file inclusion vulnerability in modules/syntax_highlight.php in the Sniplets 1.1.2 and 1.2.2 plugin for WordPress allows remote attackers to execute arbitrary PHP code via a URL in the libpath parameter.
Max CVSS
7.5
EPSS Score
1.49%
Published
2008-02-28
Updated
2018-10-11
PHP remote file inclusion vulnerability in wp-links/links.all.php in WordPress 0.70 allows remote attackers to execute arbitrary PHP code via a URL in the $abspath variable.
Max CVSS
7.5
EPSS Score
1.15%
Published
2014-10-27
Updated
2017-08-29
2 vulnerabilities found