VulnerableCode Vulnerability Details - VCID-zanm-zu7v-c3c8

Search for vulnerabilities

Vulnerability details: VCID-zanm-zu7v-c3c8

Essentials
Severities (13)
References (6)
Severity details (0)
Exploits (2)
EPSS
History (1)

Vulnerability ID	VCID-zanm-zu7v-c3c8
Aliases	CVE-2009-2335
Summary	wordpress: multiple vulnerabilities
Status	Published
Exploitability	2.0
Weighted Severity	0.8
Risk	1.6
Affected and Fixed Packages	Package Details

Weaknesses (0)

There are no known CWE.

System	Score	Found at
epss	0.83947	https://api.first.org/data/v1/epss?cve=CVE-2009-2335
epss	0.83947	https://api.first.org/data/v1/epss?cve=CVE-2009-2335
epss	0.83947	https://api.first.org/data/v1/epss?cve=CVE-2009-2335
epss	0.83947	https://api.first.org/data/v1/epss?cve=CVE-2009-2335
epss	0.83947	https://api.first.org/data/v1/epss?cve=CVE-2009-2335
epss	0.83947	https://api.first.org/data/v1/epss?cve=CVE-2009-2335
epss	0.83947	https://api.first.org/data/v1/epss?cve=CVE-2009-2335
epss	0.83947	https://api.first.org/data/v1/epss?cve=CVE-2009-2335
epss	0.83947	https://api.first.org/data/v1/epss?cve=CVE-2009-2335
epss	0.83947	https://api.first.org/data/v1/epss?cve=CVE-2009-2335
epss	0.83947	https://api.first.org/data/v1/epss?cve=CVE-2009-2335
epss	0.83947	https://api.first.org/data/v1/epss?cve=CVE-2009-2335
epss	0.83947	https://api.first.org/data/v1/epss?cve=CVE-2009-2335

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2335.json
		https://api.first.org/data/v1/epss?cve=CVE-2009-2335
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2335
510745		https://bugzilla.redhat.com/show_bug.cgi?id=510745
536724		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=536724
CVE-2009-2335;OSVDB-55713	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/17702.rb

Data source	Metasploit
Description	WordPress Authentication Brute Force and User Enumeration Utility
Note	{}
Ransomware campaign use	Unknown
Source URL	https://github.com/rapid7/metasploit-framework/tree/master/modules/auxiliary/scanner/http/wordpress_login_enum.rb

Data source	Exploit-DB
Date added	Aug. 20, 2011
Description	WordPress Plugin Block-Spam-By-Math-Reloaded - Bypass
Ransomware campaign use	Unknown
Source publication date	Aug. 20, 2011
Exploit type	webapps
Platform	php
Source update date	Aug. 20, 2011

There are no known vectors.

Exploit Prediction Scoring System (EPSS)

Percentile	0.99248
EPSS Score	0.83947
Published At	July 30, 2025, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2025-07-31T11:28:36.149253+00:00	RedHat Importer	Import	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2335.json	37.0.0