Disqus <= 2.75 - Remote Code Execution (RCE)Sign up to our free email alerts service for instant vulnerability notifications!
Only affects plugins installed on WordPress <= 3.1.4 due to needing PHP <= 5.1.6 to be exploited.
fixed in version 2.76
|OWASP Top 10||A1: Injection|
|Publicly Published||2014-06-20 (over 3 years ago)|
|Added||2014-08-01 (about 3 years ago)|
|Last Updated||2015-09-09 (about 2 years ago)|
Copyright & License
|Copyright||All data and resources contained within this page and this web site is Copyright © The WPScan Team.|
|License||Some of this data may be used for non-commercial purposes, however, any potential commercial usage of this data will require a license. If you would like to inquire about a commercial license please contact us.|