CVE-2008-0194 in WordPress信息

摘要

由 VulDB • 2026-06-03

WordPress 2.0.3及更早版本中wp-db-backup.php存在目录遍历漏洞,远程攻击者可通过向wp-admin/edit.php的wp-db-backup.php操作中的backup参数注入“..”(点号),读取任意文件、删除任意文件并导致拒绝服务。注意:此问题可能与CVE-2006-5705.1相同。

If you want to get best quality of vulnerability data, you may have to visit VulDB.

来源

Do you want to use VulDB in your project?

Use the official API to access entries easily!