Detections
Analytics
WordPress 5.9 < 5.9.2 / 5.8 < 5.8.4 / 5.7 < 5.7.6 / 5.6 < 5.6.8 / 5.5 < 5.5.9 / 5.4 < 5.4.10 / 5.3 < 5.3.12 / 5.2 < 5.2.15 / 5.1 < 5.1.13 / 5.0 < 5.0.16 / 4.9 < 4.9.20 / 4.8 < 4.8.19 / 4.7 < 4.7.23 / 4.6 < 4.6.23 / 4.5 < 4.5.26 / 4.4 < 4.4.27 / 4.3 < 4.3.28 / 4.2 < 4.2.32 / 4.1 < 4.1.35 / 4.0 < 4.0.35 / 3.9 < 3.9.36 / 3.8 < 3.8.38 / 3.7 < 3.7.38
high Nessus Plugin ID 159009
Language:
Synopsis
A PHP application running on the remote web server is affected by one or more vulnerabilities.Description
WordPress versions 5.9 < 5.9.2 / 5.8 < 5.8.4 / 5.7 < 5.7.6 / 5.6 < 5.6.8 / 5.5 < 5.5.9 / 5.4 < 5.4.10 / 5.3 < 5.3.12 / 5.2 < 5.2.15 / 5.1 < 5.1.13 / 5.0 < 5.0.16 / 4.9 < 4.9.20 / 4.8 < 4.8.19 / 4.7 < 4.7.23 / 4.6 < 4.6.23 / 4.5 < 4.5.26 / 4.4 < 4.4.27 / 4.3 < 4.3.28 / 4.2 < 4.2.32 / 4.1 < 4.1.35 / 4.0 < 4.0.35 / 3.9 < 3.9.36 / 3.8 < 3.8.38 / 3.7 < 3.7.38 are affected by one or more vulnerabilitiesSolution
Upgrade to WordPress version 5.9.2, 5.8.4, 5.7.6, 5.6.8, 5.5.9, 5.4.10, 5.3.12, 5.2.15, 5.1.13, 5.0.16, 4.9.20, 4.8.19, 4.7.23, 4.6.23, 4.5.26, 4.4.27, 4.3.28, 4.2.32, 4.1.35, 4.0.35, 3.9.36, 3.8.38, 3.7.38 or later.See Also
https://wordpress.org/download/releases/
http://www.nessus.org/u?b97fee2e
https://wordpress.org/support/wordpress-version/version-5-9-2/
Plugin Details
Severity: High
ID: 159009
File Name: wordpress_5_9_2.nasl
Version: 1.2
Type: remote
Family: CGI abuses
Published: 3/17/2022
Updated: 3/17/2022
Configuration: Enable paranoid mode
Supported Sensors: Nessus
Vulnerability Information
CPE: cpe:/a:wordpress:wordpress
Required KB Items: installed_sw/WordPress, www/PHP, Settings/ParanoidReport
Exploit Ease: No known exploits are available
Patch Publication Date: 3/11/2022
Vulnerability Publication Date: 3/11/2022