Vulnerabilities (CVE)

Filtered by vendor Ryan.mcgeary Subscribe
Filtered by product Wp-syntax
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-2852 2 Ryan.mcgeary, Wordpress 2 Wp-syntax, Wordpress 2024-02-04 6.8 MEDIUM N/A
WP-Syntax plugin 0.9.1 and earlier for Wordpress, with register_globals enabled, allows remote attackers to execute arbitrary PHP code via the test_filter[wp_head] array parameter to test/index.php, which is used in a call to the call_user_func_array function.