CVE-2007-0541

Priority
Description
WordPress allows remote attackers to determine the existence of arbitrary
files, and possibly read portions of certain files, via pingback service
calls with a source URI that corresponds to a local pathname, which
triggers different fault codes for existing and non-existing files, and in
certain configurations causes a brief file excerpt to be published as a
blog comment.
Notes
Package
Upstream:released (2.0.8)
More Information

Updated: 2020-09-09 23:58:07 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)