Max CVSS | 10.0 | Min CVSS | 6.4 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2009-2854 | 6.4 |
Wordpress before 2.8.3 does not check capabilities for certain actions, which allows remote attackers to make unauthorized edits or additions via a direct request to (1) edit-comments.php, (2) edit-pages.php, (3) edit.php, (4) edit-category-form.php,
|
22-11-2017 - 17:17 | 18-08-2009 - 21:00 | |
CVE-2009-2853 | 10.0 |
Wordpress before 2.8.3 allows remote attackers to gain privileges via a direct request to (1) admin-footer.php, (2) edit-category-form.php, (3) edit-form-advanced.php, (4) edit-form-comment.php, (5) edit-link-category-form.php, (6) edit-link-form.php
|
16-11-2017 - 20:30 | 18-08-2009 - 21:00 |