CVE-2008-0191

WordPress 2.2.x and 2.3.x allows remote attackers to obtain sensitive information via an invalid p parameter in an rss2 action to the default URI, which reveals the full path and the SQL database structure.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:wordpress:wordpress:2.2:*:*:*:*:*:*:*
cpe:2.3:a:wordpress:wordpress:2.3:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-01-10 00:46

Updated : 2024-02-04 17:13


NVD link : CVE-2008-0191

Mitre link : CVE-2008-0191

CVE.ORG link : CVE-2008-0191


JSON object : View

Products Affected

wordpress

  • wordpress
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor