CVE-2011-3129
EPSS 0.61%
Description
The file upload functionality in WordPress 3.1 before 3.1.3 and 3.2 before Beta 2, when running "on hosts with dangerous security settings," has unknown impact and attack vectors, possibly related to dangerous filenames.
How to fix CVE-2011-3129
To remediate CVE-2011-3129, upgrade the affected package to a fixed version below.
- Debian/wordpress—upgrade to 3.2.1+dfsg-1 or later
Is CVE-2011-3129 being exploited?
Low — EPSS is 0.6%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 3.2.1+dfsg-1