CVEs affecting projects tracked on Release Alert, from NVD & OSV.
CVE-2011-3129 — HIGH severity vulnerability | Release Alert
CVE-2011-3129
9.3
HIGHCVSS v2
Published
August 10, 2011
Affected
2 projects
Assigned by
MITRE
Severity scale
010
Description
The file upload functionality in WordPress 3.1 before 3.1.3 and 3.2 before Beta 2, when running "on hosts with dangerous security settings," has unknown impact and attack vectors, possibly related to dangerous filenames.
GitHubWordPress, Git-ified. This repository is just a mirror of the WordPress subversion repository. Please do not send pull requests. Submit pull requests to https://github.com/WordPress/wordpress-develop and patches to https://core.trac.wordpress.org/ instead.
RubyGemsThe Wordpress gem provides posting to a Wordpress.com blog or a self hosted wordpress by providing your username, password, login url(if you host your blog) and your blog content. With this gem, you have access to add a text entry on Wordpress blog by providing these options: title text, body text, and a tag array. You must include at least title text or body text with your post.
Posting images with posts, posting only images and pulling down your posts will be available very soon.