HTTP: WordPress Global Content Blocks Code Execution Attempt
This signature detects attempts to exploit a known vulnerability against WordPress Global Content Blocks plugin. Successful exploitation of this vulnerability can lead to an arbitrary code execution within the context of the Web server.
Extended Description
Global Content Blocks is prone to multiple security vulnerabilities, including a remote PHP code-execution vulnerability and multiple information-disclosure vulnerability. Successful exploits of these issues may allow remote attackers to execute arbitrary malicious PHP code in the context of the application or obtain potentially sensitive information. Global Content Blocks 1.5.1 is vulnerable; other versions may also be affected.
Affected Products
Wordpress global_content_blocks
References
BugTraq: 54413
URL: http://www.wordpress.org/ http://wordpress.org/extend/plugins/global-content-blocks/changelog/
Short Name
HTTP:PHP:WP-GLOBAL-CONT-CE
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
Attempt Blocks Code Content Execution Global WordPress bid:54413
Release Date
07/22/2012
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Occasionally
Vendors
Wordpress