Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-0107 — SQL Injection in Wordpress

6 documents6 sources

Severity

6.8MEDIUMNVD

EPSS

6.9%

top 8.55%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Wordpress Debian Wordpress

Timeline

PublishedJan 9

Latest updateMay 1

Description

WordPress before 2.0.6, when mbstring is enabled for PHP, decodes alternate character sets after escaping the SQL query, which allows remote attackers to bypass SQL injection protection schemes and execute arbitrary SQL commands via multibyte charsets, as demonstrated using UTF-7.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages3 packages

▶debiandebian/wordpress< wordpress 2.0.6-1 (bookworm)

▶Debianwordpress/wordpress< 2.0.6-1+3

▶NVDwordpress/wordpress2.0.5

Patches

Patch: secunia.com ↗Patch: wordpress.org ↗Patch: www.hardened-php.net ↗

🔴Vulnerability Details

GHSA

GHSA-mm56-chx8-v576: WordPress before 2↗2022-05-01

▶

OSV

CVE-2007-0107: WordPress before 2↗2007-01-09

▶

💥Exploits & PoCs

Exploit-DB

WordPress Core 2.0.5 - Trackback UTF-7 SQL Injection↗2007-01-07

▶

📋Vendor Advisories

Debian

CVE-2007-0107: wordpress - WordPress before 2.0.6, when mbstring is enabled for PHP, decodes alternate char...↗2007

▶

💬Community

Bugzilla

CVE-2007-0{106,107,109,262}: Wordpress < 2.0.7 multiple vulnerabilities↗2007-01-17

▶