CVE-2007-0541

Name of the Vulnerable Software and Affected Versions WordPress (affected versions not specified)

Description The issue allows remote attackers to determine the existence of arbitrary files and possibly read portions of certain files. This is achieved through pingback service calls with a source URI that corresponds to a local pathname. The attack triggers different fault codes for existing and non-existing files. In certain configurations, it causes a brief file excerpt to be published as a blog comment.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.