Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-prns-6erf-3fhg
Vulnerability ID VCID-prns-6erf-3fhg
Aliases CVE-2009-2334
Summary wordpress: multiple vulnerabilities
Status Published
Exploitability None
Weighted Severity None
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.12303 https://api.first.org/data/v1/epss?cve=CVE-2009-2334
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2334.json
https://api.first.org/data/v1/epss?cve=CVE-2009-2334
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2334
510745 https://bugzilla.redhat.com/show_bug.cgi?id=510745
536724 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=536724
CVE-2009-2334;OSVDB-55712 Exploit http://corelabs.coresecurity.com/index.php?action=view&type=advisory&name=WordPress_Privileges_Unchecked
CVE-2009-2334;OSVDB-55712 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/9110.txt
Data source Exploit-DB
Date added July 9, 2009
Description WordPress Core / MU / Plugins - '/admin.php' Privileges Unchecked / Multiple Information Disclosures
Ransomware campaign use Known
Source publication date July 10, 2009
Exploit type webapps
Platform php
Source update date May 4, 2017
Source URL http://corelabs.coresecurity.com/index.php?action=view&type=advisory&name=WordPress_Privileges_Unchecked
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.93982
EPSS Score 0.12303
Published At May 29, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-05-29T10:16:34.097908+00:00 RedHat Importer Import https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2334.json 38.6.0