CVE-2007-1893
EPSS 0.23%
描述
xmlrpc (xmlrpc.php) in WordPress 2.1.2, and probably earlier, allows remote authenticated users with the contributor role to bypass intended access restrictions and invoke the publish_posts functionality, which can be used to "publish a previously saved post."
如何修補 CVE-2007-1893
要修補 CVE-2007-1893,請將受影響套件升級到下列已修補版本。
- Debian/wordpress—升級至 2.1.3-1 或更新版本
CVE-2007-1893 正在被利用嗎?
低 — EPSS 為 0.2%,目前沒有觀察到大規模利用活動。
受影響套件(1)
- from 0, < 2.1.3-1