wp-admin/upgrade.php in WordPress, probably 2.6.x, allows remote attackers to upgrade the application, and possibly cause a denial of service (application outage), via a direct request.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Wordpress | Wordpress | 2.6 (including) | 2.6 (including) |
Wordpress | Ubuntu | dapper | * |
Wordpress | Ubuntu | hardy | * |
Wordpress | Ubuntu | intrepid | * |
Wordpress | Ubuntu | jaunty | * |
Wordpress | Ubuntu | upstream | * |