CVE-2007-2821
wordpress - multiple vulnerabilities
EPSS 5.7%
Description
SQL injection vulnerability in wp-admin/admin-ajax.php in WordPress before 2.2 allows remote attackers to execute arbitrary SQL commands via the cookie parameter.
How to fix CVE-2007-2821
To remediate CVE-2007-2821, upgrade the affected package to a fixed version below.
- Debian/wordpress—upgrade to 2.2-1 or later
- Debian/wordpress—upgrade to 2.0.10-1etch1 or later
Is CVE-2007-2821 being exploited?
Moderate — EPSS is 5.7%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 2.2-1
- from 0, < 2.0.10-1etch1