4.3

CVE-2013-2199

The HTTP API in WordPress before 3.5.2 allows remote attackers to send HTTP requests to intranet servers via unspecified vectors, related to a Server-Side Request Forgery (SSRF) issue, a similar vulnerability to CVE-2013-0235.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
WordpressWordpress Version <= 3.5.1
WordpressWordpress Version0.71
WordpressWordpress Version1.0
WordpressWordpress Version1.0.1
WordpressWordpress Version1.0.2
WordpressWordpress Version1.1.1
WordpressWordpress Version1.2
WordpressWordpress Version1.2.1
WordpressWordpress Version1.2.2
WordpressWordpress Version1.2.3
WordpressWordpress Version1.2.4
WordpressWordpress Version1.2.5
WordpressWordpress Version1.2.5 Updatea
WordpressWordpress Version1.3
WordpressWordpress Version1.3.2
WordpressWordpress Version1.3.3
WordpressWordpress Version1.5
WordpressWordpress Version1.5.1
WordpressWordpress Version1.5.1.1
WordpressWordpress Version1.5.1.2
WordpressWordpress Version1.5.1.3
WordpressWordpress Version1.5.2
WordpressWordpress Version1.6.2
WordpressWordpress Version2.0
WordpressWordpress Version2.0.1
WordpressWordpress Version2.0.2
WordpressWordpress Version2.0.4
WordpressWordpress Version2.0.5
WordpressWordpress Version2.0.6
WordpressWordpress Version2.0.7
WordpressWordpress Version2.0.8
WordpressWordpress Version2.0.9
WordpressWordpress Version2.0.10
WordpressWordpress Version2.0.11
WordpressWordpress Version2.1
WordpressWordpress Version2.1.1
WordpressWordpress Version2.1.2
WordpressWordpress Version2.1.3
WordpressWordpress Version2.2
WordpressWordpress Version2.2.1
WordpressWordpress Version2.2.2
WordpressWordpress Version2.2.3
WordpressWordpress Version2.3
WordpressWordpress Version2.3.1
WordpressWordpress Version2.3.2
WordpressWordpress Version2.3.3
WordpressWordpress Version2.5
WordpressWordpress Version2.5.1
WordpressWordpress Version2.6
WordpressWordpress Version2.6.1
WordpressWordpress Version2.6.2
WordpressWordpress Version2.6.3
WordpressWordpress Version2.6.5
WordpressWordpress Version2.7
WordpressWordpress Version2.7.1
WordpressWordpress Version2.8
WordpressWordpress Version2.8.1
WordpressWordpress Version2.8.2
WordpressWordpress Version2.8.3
WordpressWordpress Version2.8.4
WordpressWordpress Version2.8.4 Updatea
WordpressWordpress Version2.8.5
WordpressWordpress Version2.8.5.1
WordpressWordpress Version2.8.5.2
WordpressWordpress Version2.8.6
WordpressWordpress Version2.9
WordpressWordpress Version2.9.1
WordpressWordpress Version2.9.1.1
WordpressWordpress Version2.9.2
WordpressWordpress Version3.3
WordpressWordpress Version3.3.1
WordpressWordpress Version3.3.2
WordpressWordpress Version3.3.3
WordpressWordpress Version3.4.0
WordpressWordpress Version3.4.1
WordpressWordpress Version3.4.2
WordpressWordpress Version3.5.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.83% 0.739
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:P/A:N