Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wordpress wordpress mu 1.0 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-4671
Cross-site scripting (XSS) vulnerability in wp-admin/wp-blogs.php in Wordpress MU (WPMU) prior to 2.6 allows remote malicious users to inject arbitrary web script or HTML via the (1) s and (2) ip_address parameters.
Wordpress Wordpress Mu
Wordpress Wordpress Mu 1.2.3
Wordpress Wordpress Mu 1.2.2
Wordpress Wordpress Mu 1.3
Wordpress Wordpress Mu 1.3.1
Wordpress Wordpress Mu 1.0
1 EDB exploit
4.3
CVSSv2
CVE-2009-1030
Cross-site scripting (XSS) vulnerability in the choose_primary_blog function in wp-includes/wpmu-functions.php in WordPress MU (WPMU) prior to 2.7 allows remote malicious users to inject arbitrary web script or HTML via the HTTP Host header.
Wordpress Wordpress Mu 1.5.1
Wordpress Wordpress Mu 1.3.3
Wordpress Wordpress Mu 1.0
Wordpress Wordpress Mu 2.6.3
Wordpress Wordpress Mu 1.2.5a
Wordpress Wordpress Mu 1.2.3
Wordpress Wordpress Mu 2.6.1
Wordpress Wordpress Mu 1.3.2
Wordpress Wordpress Mu 2.7
Wordpress Wordpress Mu 1.2
Wordpress Wordpress Mu 1.1
Wordpress Wordpress Mu 1.2.2
Wordpress Wordpress Mu 1.2.4
Wordpress Wordpress Mu
Wordpress Wordpress Mu 1.3
Wordpress Wordpress Mu 1.3.1
Wordpress Wordpress Mu 1.1.1
Wordpress Wordpress Mu 2.6.2
Wordpress Wordpress Mu 1.5
Wordpress Wordpress Mu 1.2.1
Wordpress Wordpress Mu 2.6.5
1 EDB exploit
4.9
CVSSv2
CVE-2009-2334
wp-admin/admin.php in WordPress and WordPress MU prior to 2.8.1 does not require administrative authentication to access the configuration of a plugin, which allows remote malicious users to specify a configuration file in the page parameter to obtain sensitive information or mod...
Wordpress Wordpress 2.0.11
Wordpress Wordpress 1.2-mingus
Wordpress Wordpress 2.3.1
Wordpress Wordpress 2.0
Wordpress Wordpress 2.1.1
Wordpress Wordpress 2.1.3 Rc2
Wordpress Wordpress 2.2.3
Wordpress Wordpress 2.0.2
Wordpress Wordpress Mu 1.5.1
Wordpress Wordpress 1.2
Wordpress Wordpress Mu 1.3.3
Wordpress Wordpress 2.1
Wordpress Wordpress 2.0.10 Rc1
Wordpress Wordpress 1.5-strayhorn
Wordpress Wordpress 1.2-delta
Wordpress Wordpress 2.0.6
Wordpress Wordpress 1.0
Wordpress Wordpress 2.0.1
Wordpress Wordpress 2.0.4
Wordpress Wordpress 1.3.1
Wordpress Wordpress Mu 2.6.3
Wordpress Wordpress Mu 2.6
1 EDB exploit
5
CVSSv2
CVE-2009-2432
WordPress and WordPress MU prior to 2.8.1 allow remote malicious users to obtain sensitive information via a direct request to wp-settings.php, which reveals the installation path in an error message.
Wordpress Wordpress 2.0.11
Wordpress Wordpress 1.2-mingus
Wordpress Wordpress 2.3.1
Wordpress Wordpress 2.0
Wordpress Wordpress 2.1.1
Wordpress Wordpress 2.1.3 Rc2
Wordpress Wordpress 2.2.3
Wordpress Wordpress 2.0.2
Wordpress Wordpress Mu 1.5.1
Wordpress Wordpress 1.2
Wordpress Wordpress Mu 1.3.3
Wordpress Wordpress 2.1
Wordpress Wordpress 2.0.10 Rc1
Wordpress Wordpress 1.5-strayhorn
Wordpress Wordpress 1.2-delta
Wordpress Wordpress 2.0.6
Wordpress Wordpress 1.0
Wordpress Wordpress 2.0.1
Wordpress Wordpress 2.0.4
Wordpress Wordpress 1.3.1
Wordpress Wordpress Mu 2.6.3
Wordpress Wordpress Mu 2.6
4.3
CVSSv2
CVE-2007-4544
Cross-site scripting (XSS) vulnerability in wp-newblog.php in WordPress multi-user (MU) 1.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the weblog_id parameter (Username field).
Wordpress Wordpress Mu
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started