WordPress 3.5-3.5.1 oEmbed Unspecified XML External Entity (XXE)

Affects WordPresses

fixed in version 3.5.2
fixed in version 3.5.2

References

CVE 2013-2202

Classification

Type XXE
OWASP Top 10 A4: XML External Entities (XXE)
CWE CWE-611

Miscellaneous

Views 5358
Verified No
WPVDB ID 5983

Timeline

Publicly Published 2013-06-21 (over 6 years ago)
Added 2014-08-01 (over 5 years ago)
Last Updated 2019-10-21 (about 2 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin