Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Directory traversal vulnerability in wp-db-backup.php in WordPress 2.0.3 and earlier allows remote attackers to read arbitrary files, delete arbitrary files, and cause a denial of service via a .. (dot dot) in the backup parameter in a wp-db-backup.php action to wp-admin/edit.php. NOTE: this might be the same as CVE-2006-5705.1.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WordPress跨站脚本漏洞
Vulnerability Description
WordPress是一套用于艺术类的Web出版发布系统。 WordPress 2.0.3以及更早版本下的wp-db-backup.php中的目录遍历漏洞允许远程攻击者借助wp-db-backup.php到wp-admin/edit.php行动中的backup参数中的".."来读取、删除任意文件以及引起拒绝服务攻击。注意:这在CVE-2006-5705.1下也有可能发生。
CVSS Information
N/A
Vulnerability Type
N/A