About Us | Contact Us

 


 

VUPEN Free Resources
 
  VUPEN Security Advisories
 
  VUPEN Security Blog & News
  Zero-day Attacks Monitor
  Daily Security Mailinglist
  Explanation of Terms
  Advanced Search Engine
 
   

WordPress Arbitrary File Upload and Cross Site Scripting Vulnerabilities

VUPEN ID VUPEN/ADV-2009-3234
CVE ID CVE-2009-3890 - CVE-2009-3891
 
CWE ID Available in VUPEN VNS Customer Area
CVSS V2 Available in VUPEN VNS Customer Area
Rated as Moderate Risk 
Impact Available in VUPEN VNS Customer Area
Authentication Level Available in VUPEN VNS Customer Area
Access Vector Available in VUPEN VNS Customer Area
Release Date 2009-11-13
Share Twitter LinkedIn Facebook Delicious Digg Slashdot

Technical Description

Two vulnerabilities have been identified in WordPress, which could be exploited by malicious users to gain knowledge of sensitive information or compromise a vulnerable system.

The first issue is caused by an input validation error in the file upload functionality when processing a file with a filename containing multiple file extensions, which could allow malicious users to upload PHP scripts and execute arbitrary commands on a web server with a specific configuration.

The second vulnerability is caused by an unspecified input validation error when processing user-supplied data, which could be exploited by malicious users to conduct cross site scripting attacks.

Affected Products

WordPress versions prior to 2.8.6

Solution 

Upgrade to WordPress version 2.8.6 :
http://wordpress.org/download/

References

http://www.vupen.com/english/advisories/2009/3234
http://wordpress.org/development/2009/11/wordpress-2-8-6-security-release/
http://seclists.org/fulldisclosure/2009/Nov/141

Credits 

Vulnerabilities reported by Dawid Golunski and Benjamin Flesch.

Changelog 

2009-11-13 : Initial release

Feedback 

If you have additional information or corrections for this security advisory please submit them via our contact form.
 

Monthly Statistics 

 

 VUPEN Security Advisories By Criticality: Aug 2010


  Critical Risk

 : 0%

  High Risk		 : 0%

  Moderate Risk		 : 0%

  Low Risk		 : 100%

Get a real-time view of the vulnerabilities affecting your systems using the VUPEN VNS reporting capabilities.
 
 

Try VUPEN VNS 

 

 





© 2004-2010 VUPEN Security - Copyright - Privacy Policy