Detections
Analytics
WordPress 5.9 < 5.9.2 / 5.8 < 5.8.4 / 5.7 < 5.7.6 / 5.6 < 5.6.8 / 5.5 < 5.5.9 / 5.4 < 5.4.10 / 5.3 < 5.3.12 / 5.2 < 5.2.15 / 5.1 < 5.1.13 / 5.0 < 5.0.16 / 4.9 < 4.9.20 / 4.8 < 4.8.19 / 4.7 < 4.7.23 / 4.6 < 4.6.23 / 4.5 < 4.5.26 / 4.4 < 4.4.27 / 4.3 < 4.3.28 / 4.2 < 4.2.32 / 4.1 < 4.1.35 / 4.0 < 4.0.35 / 3.9 < 3.9.36 / 3.8 < 3.8.38 / 3.7 < 3.7.38
high Nessus Plugin ID 159009
Language:
Synopsis
A PHP application running on the remote web server is affected by one or more vulnerabilities.Description
WordPress versions 5.9 < 5.9.2 / 5.8 < 5.8.4 / 5.7 < 5.7.6 / 5.6 < 5.6.8 / 5.5 < 5.5.9 / 5.4 < 5.4.10 / 5.3 < 5.3.12 / 5.2 < 5.2.15 / 5.1 < 5.1.13 / 5.0 < 5.0.16 / 4.9 < 4.9.20 / 4.8 < 4.8.19 / 4.7 < 4.7.23 / 4.6 < 4.6.23 / 4.5 < 4.5.26 / 4.4 < 4.4.27 / 4.3 < 4.3.28 / 4.2 < 4.2.32 / 4.1 < 4.1.35 / 4.0 < 4.0.35 / 3.9 < 3.9.36 / 3.8 < 3.8.38 / 3.7 < 3.7.38 are affected by one or more vulnerabilitiesSolution
Upgrade to WordPress version 5.9.2, 5.8.4, 5.7.6, 5.6.8, 5.5.9, 5.4.10, 5.3.12, 5.2.15, 5.1.13, 5.0.16, 4.9.20, 4.8.19, 4.7.23, 4.6.23, 4.5.26, 4.4.27, 4.3.28, 4.2.32, 4.1.35, 4.0.35, 3.9.36, 3.8.38, 3.7.38 or later.See Also
https://wordpress.org/download/releases/
http://www.nessus.org/u?b97fee2e
https://wordpress.org/support/wordpress-version/version-5-9-2/
Plugin Details
Severity: High
ID: 159009
File Name: wordpress_5_9_2.nasl
Version: 1.3
Type: remote
Family: CGI abuses
Published: 3/17/2022
Updated: 6/6/2024
Configuration: Enable paranoid mode
Supported Sensors: Nessus
Enable CGI Scanning: true
Vulnerability Information
CPE: cpe:/a:wordpress:wordpress
Required KB Items: installed_sw/WordPress, www/PHP, Settings/ParanoidReport
Excluded KB Items: Settings/disable_cgi_scanning
Exploit Ease: No known exploits are available
Patch Publication Date: 3/11/2022
Vulnerability Publication Date: 3/11/2022