WordPress Plugins Themes Submit

WordPress 1.5.1 - 3.5 XMLRPC Pingback API Internal/External Port Scanning

Sign up to our free email alerts service for instant vulnerability notifications!

Affects

WordPresses

3.5 fixed in version 3.5.1 3.4.2 fixed in version 3.5.1 3.4.1 fixed in version 3.5.1 3.4-beta4 fixed in version 3.5.1 3.4 fixed in version 3.5.1 3.3.3 fixed in version 3.5.1 3.3.2 fixed in version 3.5.1 3.3.1 fixed in version 3.5.1 3.3 fixed in version 3.5.1 3.2.1 fixed in version 3.5.1 3.2 fixed in version 3.5.1 3.1.4 fixed in version 3.5.1 3.1.3 fixed in version 3.5.1 3.1.2 fixed in version 3.5.1 3.1.1 fixed in version 3.5.1 3.1 fixed in version 3.5.1 3.0.6 fixed in version 3.5.1 3.0.5 fixed in version 3.5.1 3.0.4 fixed in version 3.5.1 3.0.3 fixed in version 3.5.1 3.0.2 fixed in version 3.5.1 3.0.1 fixed in version 3.5.1 3.0 fixed in version 3.5.1 2.9.2 fixed in version 3.5.1 2.9.1 fixed in version 3.5.1 2.9 fixed in version 3.5.1 2.8.6 fixed in version 3.5.1 2.8.5 fixed in version 3.5.1 2.8.4 fixed in version 3.5.1 2.8.3 fixed in version 3.5.1 2.8.2 fixed in version 3.5.1 2.8.1 fixed in version 3.5.1 2.8 fixed in version 3.5.1 2.7.1 fixed in version 3.5.1 2.7 fixed in version 3.5.1 2.6.5 fixed in version 3.5.1 2.6.3 fixed in version 3.5.1 2.6.2 fixed in version 3.5.1 2.6.1 fixed in version 3.5.1 2.6 fixed in version 3.5.1 2.5.1 fixed in version 3.5.1 2.5 fixed in version 3.5.1 2.3.3 fixed in version 3.5.1 2.3.2 fixed in version 3.5.1 2.3.1 fixed in version 3.5.1 2.3 fixed in version 3.5.1 2.2.3 fixed in version 3.5.1 2.2.2 fixed in version 3.5.1 2.2.1 fixed in version 3.5.1 2.2 fixed in version 3.5.1 2.1.3 fixed in version 3.5.1 2.1.2 fixed in version 3.5.1 2.1.1 fixed in version 3.5.1 2.1 fixed in version 3.5.1 2.0.9 fixed in version 3.5.1 2.0.8 fixed in version 3.5.1 2.0.7 fixed in version 3.5.1 2.0.6 fixed in version 3.5.1 2.0.5 fixed in version 3.5.1 2.0.4 fixed in version 3.5.1 2.0.3 fixed in version 3.5.1 2.0.2 fixed in version 3.5.1 2.0.11 fixed in version 3.5.1 2.0.10 fixed in version 3.5.1 2.0.1 fixed in version 3.5.1 2.0 fixed in version 3.5.1 1.5.2 fixed in version 3.5.1 1.5.1.3 fixed in version 3.5.1 1.5.1.2 fixed in version 3.5.1 1.5.1.1 fixed in version 3.5.1 1.5.1 fixed in version 3.5.1

References

CVE	2013-0235
URL	https://github.com/FireFart/WordpressPingbackPortScanner

Classification

Type	SSRF
OWASP Top 10	A5: Security Misconfiguration
CWE	CWE-918

Miscellaneous

Views	1343
Verified	Yes
WPVDB ID	5988

Timeline

Added	2014-08-01 (about 3 years ago)
Last Updated	2015-05-15 (over 2 years ago)

Copyright & License

Copyright	All data and resources contained within this page and this web site is Copyright © The WPScan Team.
License	Some of this data may be used for non-commercial purposes, however, any potential commercial usage of this data will require a license. If you would like to inquire about a commercial license please contact us.