CVE-2007-0540

EPSS 7.8%

wordpress - several vulnerabilities

Published: 1/29/2007Modified: 5/27/2026

Description

WordPress allows remote attackers to cause a denial of service (bandwidth or thread consumption) via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data.

Affected packages (2)

Debian/wordpressfrom 0, < 2.1.0-1
Debian/wordpressfrom 0, < 2.0.10-1etch2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-0540