Wordpress Wordpress : Security vulnerabilities, CVEs Information leak published in 2008

Copy

CVE-2008-0195

WordPress 2.0.11 and earlier allows remote attackers to obtain sensitive information via an empty value of the page parameter to certain PHP scripts under wp-admin/, which reveals the path in various error messages.

Max CVSS

5.0

EPSS Score

0.57%

Published

2008-01-10

Updated

2018-10-15

CVE-2008-0191

WordPress 2.2.x and 2.3.x allows remote attackers to obtain sensitive information via an invalid p parameter in an rss2 action to the default URI, which reveals the full path and the SQL database structure.

Max CVSS

5.0

EPSS Score

0.52%

Published

2008-01-10

Updated

2018-10-15

2 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!