CVE-2007-0541
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-0541
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
WordPress allows remote attackers to determine the existence of arbitrary files, and possibly read portions of certain files, via pingback service calls with a source URI that corresponds to a local pathname, which triggers different fault codes for existing and non-existing files, and in certain configurations causes a brief file excerpt to be published as a blog comment.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
WordPress pingback 权限许可和访问控制漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
WordPress存在权限许可和访问控制漏洞,远程攻击者可以借助带有源URI的pingback服务调用,来决定任意文件的存在和可能读取部分特定文件。该源URI与一个本地路径名一致,这会为存在的和不存在的文件触发不同的错误代码,并且在一些配置情况下,这造成一个简短的文件摘选作为日志评论而被公布。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-0541
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-0541
请登录查看更多情报信息。
Same Patch Batch · n/a · 2007-01-29 · 36 CVEs total
| CVE-2006-6958 | phpBlueDragon 多个PHP远程文件包含漏洞 | |
| CVE-2007-0554 | GPS CMS 'Print.ASP' SQL注入漏洞 | |
| CVE-2004-2676 | WebRoot Spy Sweeper Spy Sweeper Enterprise Client提升特权漏洞 | |
| CVE-2005-4825 | Secure Smart Manager Cisco Clean Access 拒绝服务攻击漏洞 | |
| CVE-2006-6953 | GlobeTrotter Mobility管理器虚拟键盘 键盘记录漏洞 | |
| CVE-2006-6954 | Flock beta 绝服务攻击漏洞 | |
| CVE-2006-6955 | Opera 拒绝服务攻击漏洞 | |
| CVE-2006-6956 | Microsoft Internet Explorer 拒绝服务攻击漏洞 | |
| CVE-2006-6957 | Docebo 'body.php'远程文件包含漏洞 | |
| CVE-2007-0553 | PHProxy 'index.inc.php' 跨站攻击漏洞 | |
| CVE-2006-6959 | WebRoot Spy Sweeper 特定Keys安全绕过漏洞 | |
| CVE-2006-6960 | WebRoot Spy Sweeper 压缩扫除特性安全绕过漏洞 | |
| CVE-2006-6961 | WebRoot Spy Sweeper 恶意软件检测安全绕过漏洞 | |
| CVE-2006-6962 | RsGallery2 'RSGallery2.PHP' 远程文件包含漏洞 | |
| CVE-2006-6963 | Docebo LMS 多个PHP远程文件包含漏洞 | |
| CVE-2006-6964 | MailEnable Professional HTML源安全信息泄露漏洞 | |
| CVE-2007-0463 | Apple Software Update格式串处理漏洞 | |
| CVE-2007-0537 | Konqueror中KDE HTML库HTML标签跨站脚本漏洞 | |
| CVE-2007-0545 | Maxtricity Tagger 'tagger.mdb' 密码安全信息泄露漏洞 | |
| CVE-2007-0347 | CVSTrac远程拒绝服务漏洞 |
Showing top 20 of 36 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2007-0541
No comments yet