WordPress 1.5.1 - 3.5 XMLRPC pingback additional issues

Affects WordPresses

no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix
no known fix

References

URL http://lab.onsec.ru/2013/01/wordpress-xmlrpc-pingback-additional.html

Classification

Type SSRF
OWASP Top 10 A1: Injection
CWE CWE-918

Miscellaneous

Views 7149
Verified Yes
WPVDB ID 5989

Timeline

Publicly Published 2014-08-01 (over 5 years ago)
Added 2014-08-01 (over 5 years ago)
Last Updated 2019-10-21 (5 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin