CVE-2011-3128
- Source
- https://cve.org/CVERecord?id=CVE-2011-3128
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2011-3128.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2011-3128
- Downstream
- Withdrawn
- 2026-01-27T04:11:54.274748Z
- Published
- 2011-08-10T21:55:02Z
- Modified
- 2026-01-27T04:11:54.274748Z
- Summary
- [none]
- Details
-
WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 treats unattached attachments as published, which might allow remote attackers to obtain sensitive data via vectors related to wp-includes/post.php.
- References