| Max CVSS | 6.5 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-0540 | 5.0 |
WordPress allows remote attackers to cause a denial of service (bandwidth or thread consumption) via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usa
|
16-10-2018 - 16:33 | 29-01-2007 - 17:28 | |
| CVE-2007-3639 | 4.0 |
WordPress before 2.2.2 allows remote attackers to redirect visitors to other websites and potentially obtain sensitive information via (1) the _wp_http_referer parameter to wp-pass.php, related to the wp_get_referer function in wp-includes/functions.
|
15-10-2018 - 21:29 | 10-07-2007 - 00:30 | |
| CVE-2007-4153 | 2.1 |
Multiple cross-site scripting (XSS) vulnerabilities in WordPress 2.2.1 allow remote authenticated administrators to inject arbitrary web script or HTML via (1) the Options Database Table in the Admin Panel, accessed through options.php; or (2) the op
|
29-07-2017 - 01:32 | 03-08-2007 - 20:17 | |
| CVE-2007-4154 | 6.5 |
SQL injection vulnerability in options.php in WordPress 2.2.1 allows remote authenticated administrators to execute arbitrary SQL commands via the page_options parameter to (1) options-general.php, (2) options-writing.php, (3) options-reading.php, (4
|
29-07-2017 - 01:32 | 03-08-2007 - 20:17 |