Description

Multiple unspecified vulnerabilities in WordPress before 2.0.4 have unknown impact and remote attack vectors. NOTE: due to lack of details, it is not clear how these issues are different from CVE-2006-3389 and CVE-2006-3390, although it is likely that 2.0.4 addresses an unspecified issue related to "Anyone can register" functionality (user registration for guests).

Remediation

References

CVE-2006-4028

Related Vulnerabilities

Oracle JRE CVE-2014-2412 Vulnerability (CVE-2014-2412)

MySQL CVE-2021-35602 Vulnerability (CVE-2021-35602)

WordPress Plugin Lightweight Sidebar Manager Cross-Site Request Forgery (1.1.4)

PrestaShop Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-30545)

Oracle JRE CVE-2013-0430 Vulnerability (CVE-2013-0430)

Severity

Critical

Classification

CVE-2006-4028

Tags

Missing Update Known Vulnerabilities