CVE-2013-2203 in WordPress信息

摘要

由 VulDB • 2026-05-13

WordPress 3.5.2 之前的版本中,当上传目录禁止写入访问时,远程攻击者可通过无效的上传请求获取敏感信息,该请求会在 XMLHttpRequest 错误消息中泄露绝对路径。

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

来源

Want to know what is going to be exploited?

We predict KEV entries!