ThreatPress

WordPress Vulnerabilities Database

Back

WordPress <= 2.0.4 - Multiple vulnerabilities

Product
WordPress
Description
The vulnerability in wp-admin/user-edit.php allows authenticated users to read the metadata of an arbitrary user via a modified user_id parameter.
Solution
Update WordPress.
Classification
Type Multi
References
CVE Mitre
CVE
Name CVE-2006-6016
Versions
Affected In <= 2.0.4
Fixed In 2.0.5
Disclosure date
2006-11-21
Credits
adapter