Wordpress : Security Vulnerabilities, CVEs, Published In June 2012 (Denial of service)

CVE-2011-4957

The make_clickable function in wp-includes/formatting.php in WordPress before 3.1.1 does not properly check URLs before passing them to the PCRE library, which allows remote attackers to cause a denial of service (crash) via a comment with a crafted URL that triggers many recursive calls.
Max CVSS
5.0
EPSS Score
0.78%
Published
2012-06-27
Updated
2012-06-28
1 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close