CVE-2013-2205

EPSS 0.59% · P69 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2013-2205

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The default configuration of SWFUpload in WordPress before 3.5.2 has an unrestrictive security.allowDomain setting, which allows remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via a crafted web site.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

WordPress ‘SWFUpload’库多个跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

WordPress是WordPress软件基金会的一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。 WordPress 3.5.1及之前的版本中的SWFUpload默认配置中存在漏洞，该漏洞源于程序设置security.allowDomain为不受限制访问。远程攻击者可通过特制的网页利用该漏洞绕过同源策略和实施跨站脚本攻击。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2013-2205

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2013-2205

请登录查看更多情报信息。

🔗 https://bugzilla.redhat.com/show_bug.cgi?id=976784x_refsource_CONFIRM
🔗 http://codex.wordpress.org/Version_3.5.2x_refsource_CONFIRM
🔗 http://wordpress.org/news/2013/06/wordpress-3-5-2/x_refsource_CONFIRM
🔗 http://make.wordpress.org/core/2013/06/21/secure-swfupload/x_refsource_CONFIRM
🔗 http://www.securityfocus.com/bid/60759vdb-entryx_refsource_BID
🔗 http://www.debian.org/security/2013/dsa-2718vendor-advisoryx_refsource_DEBIAN
https://nvd.nist.gov/vuln/detail/CVE-2013-2205

Same Patch Batch · n/a · 2013-07-08 · 22 CVEs total

CVE-2013-2201		WordPress 多个跨站脚本漏洞
CVE-2013-1615		Symantec Security Information Manager 信息泄露漏洞
CVE-2013-1614		Symantec Security Information Manager 跨站脚本和HTML注入漏洞
CVE-2013-1613		Symantec Security Information Manager SQL注入漏洞
CVE-2013-1414		Fortinet FortiOS on FortiGate 多个跨站请求伪造漏洞
CVE-2013-1059		Linux kernel net/ceph/auth_none.c拒绝服务漏洞
CVE-2013-3273		EMC RSA Authentication Manager 信息泄露漏洞
CVE-2013-3272		EMC Replication Manager信息泄露漏洞
CVE-2013-2204		WordPress 内容欺骗漏洞
CVE-2013-2203		WordPress 文件上传路径泄露漏洞
CVE-2013-2202		WordPress XML External Entity注入漏洞
CVE-2013-4786		Intelligent Platform Management Interface 信任管理问题漏洞
CVE-2013-2200		WordPress 远程提权漏洞
CVE-2013-2199		WordPress 服务器端请求伪造漏洞
CVE-2013-0237		WordPress Plupload插件未明跨站脚本漏洞
CVE-2013-0236		WordPress 多个跨站脚本漏洞
CVE-2013-0235		WordPress XMLRPC API 服务器端请求伪造漏洞
CVE-2013-4785		Dell iDRAC 6防火墙Web接口安全漏洞
CVE-2013-4784		HP Integrated Lights-Out BMC实现安全绕过漏洞
CVE-2013-4783		Dell iDRAC 6 BMC实现安全漏洞

Showing top 20 of 22 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2013-2205

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2013-2205

I. Basic Information for CVE-2013-2205

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2013-2205

III. Intelligence Information for CVE-2013-2205

Same Patch Batch · n/a · 2013-07-08 · 22 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2013-2205

Leave a comment