7.5

CVE-2012-0934

Exploit

Theme Tuner < 0.8 - Remote File Inclusion

PHP remote file inclusion vulnerability in ajax/savetag.php in the Theme Tuner plugin for WordPress before 0.8 allows remote attackers to execute arbitrary PHP code via a URL in the tt-abspath parameter.
Mögliche Gegenmaßnahme
Theme Tuner: Update to version 0.8, or a newer patched version
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ZingiriTheme Tuner Plugin Version <= 0.7
   WordpressWordpress
ZingiriTheme Tuner Plugin Version0.1
   WordpressWordpress
ZingiriTheme Tuner Plugin Version0.2
   WordpressWordpress
ZingiriTheme Tuner Plugin Version0.3
   WordpressWordpress
ZingiriTheme Tuner Plugin Version0.4
   WordpressWordpress
ZingiriTheme Tuner Plugin Version0.6
   WordpressWordpress
Weitere Schwachstelleninformationen
SystemWordPress Plugin
Produkt Theme Tuner
Version [*, 0.8)
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 8.08% 0.941
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
CWE-94 Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

http://plugins.trac.wordpress.org/changeset/492167/theme-tuner#file2
http://secunia.com/advisories/47722
Vendor Advisory
http://spareclockcycles.org/2011/09/18/exploitring-the-wordpress-extension-repos/
Exploit
http://wordpress.org/extend/plugins/theme-tuner/changelog/
Patch
http://www.securityfocus.com/bid/51636
https://exchange.xforce.ibmcloud.com/vulnerabilities/72626
https://www.wordfence.com/threat-intel/vulnerabilities/id/b3b9ccb1-3854-4aa6-9f03-ff7f861ecc14
Third Party Advisory