CVE-2012-0934
high
CVSS v3
—
CVSS v2
7.5
VIR risk
7.5
Description
PHP remote file inclusion vulnerability in ajax/savetag.php in the Theme Tuner plugin for WordPress before 0.8 allows remote attackers to execute arbitrary PHP code via a URL in the tt-abspath parameter.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: cve@mitre.org — http://wordpress.org/extend/plugins/theme-tuner/changelog/
Vendor advisory: cve@mitre.org — http://secunia.com/advisories/47722
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| zingiri | theme_tuner_plugin | {"endIncluding":"0.7"} | |
| zingiri | theme_tuner_plugin | 0.1 | |
| zingiri | theme_tuner_plugin | 0.2 | |
| zingiri | theme_tuner_plugin | 0.3 | |
| zingiri | theme_tuner_plugin | 0.4 | |
| zingiri | theme_tuner_plugin | 0.6 | |
| wordpress | wordpress | | |
References
- http://plugins.trac.wordpress.org/changeset/492167/theme-tuner#file2
- http://secunia.com/advisories/47722
- http://spareclockcycles.org/2011/09/18/exploitring-the-wordpress-extension-repos/
- http://wordpress.org/extend/plugins/theme-tuner/changelog/
- http://www.securityfocus.com/bid/51636
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72626
- http://plugins.trac.wordpress.org/changeset/492167/theme-tuner#file2
- http://secunia.com/advisories/47722
- http://spareclockcycles.org/2011/09/18/exploitring-the-wordpress-extension-repos/
- http://wordpress.org/extend/plugins/theme-tuner/changelog/
- http://www.securityfocus.com/bid/51636
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72626
CWEs
CWE-94
Verify integrity in audit chain (admin only). AS-IS.