CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 1CVE-2012-4327 – Image News Slider <= 3.2 - Unspecified Vulnerability
https://notcve.org/view.php?id=CVE-2012-4327
Unspecified vulnerability in the Image News slider plugin before 3.3 for WordPress has unspecified impact and remote attack vectors. Una vulnerabilidad no especificada en el plugin Image News slider para WordPress antes de v3.3 tiene un impacto no especificado y vectores de ataque a distancia. • http://plugins.trac.wordpress.org/changeset?old_path=%2Fwp-image-news-slider&old=529740&new_path=%2Fwp-image-news-slider&new=529740 http://secunia.com/advisories/48747 http://wordpress.org/extend/plugins/wp-image-news-slider/other_notes http://www.securityfocus.com/bid/52977 https://exchange.xforce.ibmcloud.com/vulnerabilities/74788 •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2012-3383 – WordPress Core < 3.4.2 - Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2012-3383
The map_meta_cap function in wp-includes/capabilities.php in WordPress 3.4.x before 3.4.2, when the multisite feature is enabled, does not properly assign the unfiltered_html capability, which allows remote authenticated users to bypass intended access restrictions and conduct cross-site scripting (XSS) attacks by leveraging the Administrator or Editor role and composing crafted text. La función map_meta_cap en el archivo wp-includes/capabilities.php de WordPress versiones 3.4.x anteriores a 3.4.2, cuando la funcionalidad multisite está habilitada, no asigna apropiadamente la capacidad unfiltered_html, que permite a los usuarios remotos autenticados omitir las restricciones de acceso previstas y conducir ataques de tipo cross-site scripting (XSS) mediante el aprovechamiento del rol de administrador o editor y componiendo texto especialmente diseñado. • http://codex.wordpress.org/Version_3.4.1 http://codex.wordpress.org/Version_3.4.2 http://core.trac.wordpress.org/changeset?old_path=%2Ftags%2F3.4.1&old=21780&new_path=%2Ftags%2F3.4.2&new=21780#file23 http://core.trac.wordpress.org/changeset?reponame=&new=21153%40branches%2F3.4&old=21076%40trunk#file16 http://openwall.com/lists/oss-security/2012/09/12/17 http://www.openwall.com/lists/oss-security/2012/07/02/1 http://www.openwall.com/lists/oss-security/2012/07 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 1%CPEs: 2EXPL: 2CVE-2012-3814 – Font Uploader <= 1.3 - Arbitrary File Upload
https://notcve.org/view.php?id=CVE-2012-3814
Unrestricted file upload vulnerability in font-upload.php in the Font Uploader plugin 1.2.4 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a PHP file with a .php.ttf extension, then accessing it via a direct request to the file in font-uploader/fonts. Vulnerabilidad de subida de ficheros sin restricción en font-upload.php en el complemento Font Uploaderv1.2.4 para WordPress, permite a atacantes remotos ejecutar código PHP de su elección a través de la subida de un fichero PHP con extensión .php.ttf y accediendo a él a través de petición directa en font-uploader/fonts. Unrestricted file upload vulnerability in font-upload.php in the Font Uploader plugin 1.3 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a PHP file with a .php.ttf extension, then accessing it via a direct request to the file in font-uploader/fonts. • https://www.exploit-db.com/exploits/18994 http://osvdb.org/82657 http://secunia.com/advisories/49327 http://www.exploit-db.com/exploits/18994 • CWE-264: Permissions, Privileges, and Access Controls CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 8.8EPSS: 0%CPEs: 85EXPL: 0CVE-2012-3384 – WordPress Core < 3.4.1 - Cross-Site Request Forgery
https://notcve.org/view.php?id=CVE-2012-3384
Cross-site request forgery (CSRF) vulnerability in the customizer in WordPress before 3.4.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. Una vulnerabilidad de falsificación de peticiones en sitios cruzados(CSRF) en el personalizador de WordPress anterior a v3.4.1 permite a atacantes remotos secuestrar la autenticación de las víctimas no especificadas a través de vectores desconocidos. • http://codex.wordpress.org/Version_3.4.1 http://www.openwall.com/lists/oss-security/2012/07/02/1 http://www.openwall.com/lists/oss-security/2012/07/08/1 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 4.3EPSS: 0%CPEs: 18EXPL: 0CVE-2012-6635 – WordPress Core <= 3.3.2 - Sensitive Information Disclosure
https://notcve.org/view.php?id=CVE-2012-6635
wp-admin/includes/class-wp-posts-list-table.php in WordPress before 3.3.3 does not properly restrict excerpt-view access, which allows remote authenticated users to obtain sensitive information by visiting a draft. wp-admin/includes/class-wp-posts-list-table.php en WordPress anterior a 3.3.3 no restringe adecuadamente el accesso a la vista-resumen (excerpt-view) lo que permite a los usuarios remotos autenticados obtener información sensible al visitar un proyecto. • http://codex.wordpress.org/Version_3.3.3 https://core.trac.wordpress.org/changeset/21086 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-264: Permissions, Privileges, and Access Controls •