Sign in

WordPress


WordPress是一种使用PHP语言开发的博客平台,用户可以在支持PHP和MySQL 数据库的服务器上架设自己的网志。也可以把 WordPress 当作一个内容管理系统(CMS)来使用。WordPress 是一个免费的开源项目,在GNU通用公共许可证下授权发布。

WordPress 被认为是Michel Valdrighi所开发的网志平台b2 cafelog的正式继承者。“WordPress”这个名字出自 Christine Selleck 的主意,他是主要开发者Matt Mullenweg的朋友。

website : http://wordpress.org/
  • 2010-08-26WordPress 3.0.1 wp-admin/plugins.php模块跨站脚本漏洞
  • 2010-07-23WordPress Plugin myLDlinker SQL Injection Vulnerability
  • 2010-07-10Wordpress Firestats Remote Configuration File Download
  • 2010-07-07WordPress Simple:Press 4.3插件value参数SQL注入漏洞
  • 2010-07-07WordPress WP-UserOnline 2.6.2插件脚本注入漏洞
  • 2010-06-25Vulnerabilities in Cimy Counter for WordPress
  • 2010-06-08WordPress Gigya Socialize Plugin Cross-Site Scripting Vulnerabilities
  • 2010-04-09WordPress NextGEN Gallery插件mode参数跨站脚本漏洞
  • 2010-03-24WordPress <= 2.9.2绕过口令保护漏洞
  • 2010-03-18WordPress2.9.2跨站漏洞
  • 2009-12-310day Wordpress DOS <= 2.9
  • 2009-12-18WordPress and Pyrmont V2. SQL Injection Vulnerability
  • 2009-11-25Vulnerabilities in WP-Cumulus <= 1.20 for WordPress
  • 2008-10-26WordPress Media Holder (mediaHolder.php id) SQL Injection Vuln
  • 2008-10-17Wordpress Plugin st_newsletter (stnl_iframe.php) SQL Injection Vuln
  • 2008-02-05Wordpress MU < 1.3.2 active_plugins option Code Execution Exploit
  • 2005-08-10Wordpress <= 1.5.1.3 Remote Code Execution eXploit (metasploit)
  • 2005-08-09Wordpress <= 1.5.1.3 Remote Code Execution 0-Day Exploit
  • 2005-06-30Wordpress <= 1.5.1.2 xmlrpc Interface SQL Injection Exploit
  • 2005-06-21WordPress <= 1.5.1.1 ""add new admin"" SQL Injection Exploit
  • 2005-06-22WordPress <= 1.5.1.1 SQL Injection Exploit
  • 2004-10-10WordPress Blog HTTP Splitting Vulnerability
  • 2009-12-23WordPress WP-Forum插件多个SQL注入漏洞
  • 2009-12-07Wordpress Image Manager Plugins Shell Upload Vulnerability
  • 2009-11-27Vulnerabilities in WP-Cumulus for WordPress
  • 2009-07-10WordPress Privileges Unchecked in admin.php and Multiple Information
  • 2009-07-15WordPress Plugin My Category Order <= 2.8 SQL Injection Vulnerability
  • 2009-10-19Joomla JD-WordPress 2.0 RC2 remote file icnlusion
  • 2009-11-10WordPress 2.0 - 2.7.1 admin.php Module Configuration Security Bypass Vulnerability
  • 2009-11-11WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution
  • 2009-11-10WordPress MU 1.2.2 - 1.3.1 'wp-includes/wpmu-functions.php' Cross-Site Scripting Vulnerability
  • 2009-11-13WordPress 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution
  • 2009-11-13WordPress wp-admin/includes/file.php任意文件上传漏洞
  • 2009-10-27WordPress DM Albums插件任意文件删除漏洞
  • 2009-10-27WordPress Trackback脚本拒绝服务漏洞
  • 2009-10-22Joomla JD-WordPress Vulnerability File Inclusion Version 2.0 RC2
  • 2009-09-02WordPress wp-admin非授权管理访问漏洞
  • 2009-08-28WordPress WP-Syntax插件远程PHP代码执行漏洞
  • 2009-08-28Wordpress Plugin WP-Syntax <= 0.9.1 Remote Command Execution
  • 2009-08-14Wordpress Plugin WP-Syntax <= 0.9.1 Remote Command Execution PoC
  • 2009-08-12Wordpress <= 2.8.3 Remote Admin Reset Password Vulnerability
  • 2009-07-27Wordpress 2.8.1 (url) Remote Cross Site Scripting Exploit
  • 2009-07-27WordPress 'wp-comments-post.php'跨站脚本漏洞
  • 2009-07-23WordPress Comment Author URI跨站脚本漏洞
  • 2009-07-22WordPress < 2.8.1 Security Bypass 0day
  • 2009-07-17wordpress 281评论显示xss漏洞
  • 2009-07-10WordPress wp-admin/admin.php模块错误权限检查漏洞
  • 2009-07-10WordPress口令重置用户名枚举漏洞
  • 2009-07-09WordPress Privileges Unchecked in admin.php and Multiple Information Disclosures
  • 2009-07-02WordPress Plugin Related Sites 2.1 Blind SQL Injection Vulnerability
    • >>more