VulnerableCode Package Details - pkg:deb/debian/wordpress@4.7.2%2Bdfsg-1?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-3f5q-3k4x-aue9	The register_routes function in wp-includes/rest-api/endpoints/class-wp-rest-posts-controller.php in the REST API in WordPress 4.7.x before 4.7.2 does not require an integer identifier, which allows remote attackers to modify arbitrary pages via a request for wp-json/wp/v2/posts followed by a numeric value and a non-numeric value, as demonstrated by the wp-json/wp/v2/posts/123?id=123helloworld URI.	CVE-2017-1001000
VCID-46dk-a282-8bf9	security update	CVE-2017-5612
VCID-tf2e-bgq5-9ff5	security update	CVE-2017-5611
VCID-vg54-wjcw-fuh4	security update	CVE-2017-5610

Vulnerability

Summary

Aliases

VCID-3f5q-3k4x-aue9

The register_routes function in wp-includes/rest-api/endpoints/class-wp-rest-posts-controller.php in the REST API in WordPress 4.7.x before 4.7.2 does not require an integer identifier, which allows remote attackers to modify arbitrary pages via a request for wp-json/wp/v2/posts followed by a numeric value and a non-numeric value, as demonstrated by the wp-json/wp/v2/posts/123?id=123helloworld URI.

CVE-2017-1001000

VCID-46dk-a282-8bf9

security update

CVE-2017-5612

VCID-tf2e-bgq5-9ff5

security update

CVE-2017-5611

VCID-vg54-wjcw-fuh4

security update

CVE-2017-5610

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T13:02:33.910664+00:00	Debian Importer	Fixing	VCID-46dk-a282-8bf9	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:02:21.298488+00:00	Debian Importer	Fixing	VCID-vg54-wjcw-fuh4	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:28:55.740487+00:00	Debian Importer	Fixing	VCID-tf2e-bgq5-9ff5	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:30:25.392113+00:00	Debian Importer	Fixing	VCID-3f5q-3k4x-aue9	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:57:55.015054+00:00	Debian Importer	Fixing	VCID-46dk-a282-8bf9	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:29:40.400817+00:00	Debian Importer	Fixing	VCID-vg54-wjcw-fuh4	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:04:26.223114+00:00	Debian Importer	Fixing	VCID-tf2e-bgq5-9ff5	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:20:29.528678+00:00	Debian Importer	Fixing	VCID-3f5q-3k4x-aue9	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:57:56.702868+00:00	Debian Importer	Fixing	VCID-46dk-a282-8bf9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:57:56.655161+00:00	Debian Importer	Fixing	VCID-tf2e-bgq5-9ff5	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:57:56.608727+00:00	Debian Importer	Fixing	VCID-vg54-wjcw-fuh4	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:57:55.496260+00:00	Debian Importer	Fixing	VCID-3f5q-3k4x-aue9	https://security-tracker.debian.org/tracker/data/json	38.1.0