CVE STALKER

CVE-2021-29447

CVSS
DESCRIPTIONWordpress is an open source CMS. A user with the ability to upload files (like an Author) can exploit an XML parsing issue in the Media Library leading to XXE attacks. This requires WordPress installation to be using PHP 8. Access to internal files is possible in a successful XXE attack. This has been patched in WordPress version 5.7.1, along with the older affected versions via a minor release. We strongly recommend you keep auto-updates enabled.
HEAT SCORE538

WORDS

TWEETS

DATE TWEETS USER
2021-06-15 21:40:34🚨 NEW: CVE-2021-29447 🚨 Wordpress is an open source CMS. A user with the ability to upload files (like an Author) c… https://t.co/qfJ7rGf9yQ https://twitter.com/i/web/status/1404914256785690635threatintelctr
2021-06-07 12:20:14CVE-2021-29447, Interesting #XXE vulnerability in #WordPress Media Library. https://t.co/q2UeMQNyi7 https://blog.sonarsource.com/wordpress-xxe-security-vulnerability7aSecurity
2021-06-03 17:40:52New post from https://t.co/uXvPWJy6tj (CVE-2021-29447 (debian_linux, wordpress)) has been published on https://t.co/g0Ady71DdJ http://www.sesin.at https://www.sesin.at/2021/06/02/cve-2021-29447-debian_linux-wordpress/WolfgangSesin
2021-06-03 06:10:12New post from https://t.co/9KYxtdZjkl (CVE-2021-29447 (debian_linux, wordpress)) has been published on https://t.co/Uf8Md06o2z http://www.sesin.at https://www.sesin.at/2021/06/02/cve-2021-29447-debian_linux-wordpress/www_sesin_at
2021-06-02 19:10:11🚨 NEW: CVE-2021-29447 🚨 Wordpress is an open source CMS. A user with the ability to upload files (like an Author) c… https://t.co/op4U7pBTeO https://twitter.com/i/web/status/1400165421039378432threatintelctr
2021-05-31 21:20:04#WordPress XXE attack | CVE-2021-29447 https://t.co/20QMvIr1EO #infosec #CyberAttack #bugbounty #cybersecurity https://youtu.be/zfnu-Tc5JY8RapidSafeguard
2021-05-28 06:00:05WordPress - Authenticated XXE (CVE-2021-29447) - untested. https://t.co/qof3HAuJ0c https://github.com//motikan2010//CVE-2021-29447r00tpgp
2021-05-27 07:31:43WordPress XXE Vulnerability in Media Library - CVE-2021-29447 - WPSec https://t.co/3rbLb42E2A https://blog.wpsec.com/wordpress-xxe-in-media-library-cve-2021-29447Securityblog
2021-05-26 08:21:07[URGENT ] @WordPress XML parsing issue in the Media Library leading to XXE attacks (CVE-2021-29447) PoC in the wild… https://t.co/hH8LvVRuHq https://twitter.com/i/web/status/1397466899227856897vFeed_IO
2021-05-26 08:20:50[URGENT ] @WordPress XML parsing issue in the Media Library leading to XXE attacks (CVE-2021-29447) PoC in the wild… https://t.co/tfaDUPOVhN https://twitter.com/i/web/status/1397466973420900358ToolsWatch
2021-05-25 22:46:495 new OPEN, 42 new PRO (5 + 37). OSX/Adware.Pirrit, OSX/MapperState, Android/Agent.BQX, AsyncRAT, CVE-2021-29447, C… https://t.co/Ojgcb4GxWa https://twitter.com/i/web/status/1397319996536238182ET_Labs
2021-05-24 21:50:14WordPress XXE Vulnerability in Media Library - CVE-2021-29447 - WPSec https://t.co/dpMPPjINJr #wordpress… https://t.co/hj6qzC3QBB https://bit.ly/3yDt5qo https://twitter.com/i/web/status/13969456390119792673CCatrionaCawo1
2021-05-24 04:20:03“WordPress XXE Vulnerability in Media Library - CVE-2021-29447 - WPSec” https://t.co/xl6IjaU316 https://htn.to/28LwwHqda2a_yasui
2021-05-24 04:00:05wordpressのメディアライブラリの脆弱性。 WordPress XXE Vulnerability in Media Library - CVE-2021-29447 https://t.co/vQCDnfaNkr via @wpsecscanner https://blog.wpsec.com/wordpress-xxe-in-media-library-cve-2021-29447/sunaomunakata
2021-05-23 18:30:08CVE-2021-29447 https://t.co/fOdZJAzNpw #HarsiaInfo https://har-sia.info/CVE-2021-29447.htmlHar_sia
2021-05-23 14:30:05CVE-2021-29447 Wordpress is an open source CMS. A user with the ability to upload files (like an Author) can explo… https://t.co/kmUmOZK179 https://twitter.com/i/web/status/1396472948152836100VulmonFeeds
2021-05-23 10:20:12WordPress XXE Vulnerability in Media Library – CVE-2021-29447 https://t.co/g83Zt03xyN https://blog.wpsec.com/wordpress-xxe-in-media-library-cve-2021-29447/Cibersec_
2021-05-22 18:40:14CVE-2021-29447 https://t.co/fOdZJAzNpw #HarsiaInfo https://har-sia.info/CVE-2021-29447.htmlHar_sia
2021-05-22 05:50:10WordPress XXE Vulnerability in Media Library – CVE-2021-29447 https://t.co/lMHDULxmFl https://ift.tt/3wtKZdheyalestrin
2021-05-21 20:00:40WordPress XXE Vulnerability in Media Library - CVE-2021-29447 - WPSec https://t.co/AIbHZgPSnx https://www.reddit.com/r/netsec/comments/nhp8o5/wordpress_xxe_vulnerability_in_media_library/Dinosn
2021-05-21 19:00:28WordPress XXE Vulnerability in Media Library - CVE-2021-29447 - WPSec https://t.co/P6FhO7uXqq https://blog.wpsec.com/wordpress-xxe-in-media-library-cve-2021-29447/?utm_source=newsletter-security&utm_medium=sendy&utm_campaign=2021_51ninineshark
2021-05-21 18:33:04CVE-2021-29447 https://t.co/fOdZJAzNpw #HarsiaInfo https://har-sia.info/CVE-2021-29447.htmlHar_sia
2021-05-21 14:42:31WordPress XXE Vulnerability in Media Library - CVE-2021-29447 - WPSec https://t.co/XIcYOxjL9U via @wpscans https://blog.wpsec.com/wordpress-xxe-in-media-library-cve-2021-29447/framasharia
2021-05-21 14:31:53WordPress #XXE Vulnerability in Media Library – CVE-2021-29447 WordPress versions 5.7, 5.6.2, 5.6.1, 5.6, 5.0.11 a… https://t.co/59UfssgHUH https://twitter.com/i/web/status/1395747455422148612simonbyte
2021-05-21 13:11:26https://t.co/6R9Pb3ZzTl WordPress XXE Vulnerability in Media Library - CVE-2021-29447 - WPSec #cybersecurity https://blog.wpsec.com/wordpress-xxe-in-media-library-cve-2021-29447/netsecu
2021-05-21 12:10:54WordPress XXE Vulnerability in Media Library – CVE-2021-29447 https://t.co/UzC4hC9lfx #Infosec #Secinfo #Security… https://t.co/uvmg7Rs2Ky https://blog.wpsec.com/wordpress-xxe-in-media-library-cve-2021-29447/ https://twitter.com/i/web/status/1395711189896896516CeptBiro
2021-05-21 12:00:12WordPress XXE Vulnerability in Media Library – CVE-2021-29447 https://t.co/EDYbkpt6f3 #WordPress #XXE https://blog.wpsec.com/wordpress-xxe-in-media-library-cve-2021-29447/axcheron
2021-05-21 11:50:23WordPress XXE Vulnerability in Media Library – CVE-2021-29447 https://t.co/RMxYdoUrxf #Infosec #Secinfo #Security… https://t.co/4HAlqDcDjM https://blog.wpsec.com/wordpress-xxe-in-media-library-cve-2021-29447/ https://twitter.com/i/web/status/1395706159328337925ReneRobichaud
2021-05-21 11:50:05WordPress XXE Vulnerability in Media Library - CVE-2021-29447 - WPSec https://t.co/GTgHACUIK5 #cve #bugbountytips… https://t.co/FaH7zeUHA5 https://blog.wpsec.com/wordpress-xxe-in-media-library-cve-2021-29447/ https://twitter.com/i/web/status/1395708201396412417HackENews
2021-05-21 11:30:09WordPress XXE Vulnerability in Media Library - CVE-2021-29447 - WPSec via /r/netsec https://t.co/7synJI8apu #cybersecurity #netsec #news https://ift.tt/3hF23JrCybrXx0
2021-05-21 11:21:24WordPress XXE Vulnerability in Media Library – CVE-2021-29447TEAkolik
2021-05-21 11:01:34New post: "WordPress XXE Vulnerability in Media Library - CVE-2021-29447 - WPSec" https://t.co/58nfjoS8W7 https://ift.tt/2QBg6V6Myinfosecfeed
2021-05-21 10:30:30WordPress XXE Vulnerability in Media Library - CVE-2021-29447 - WPSec https://t.co/xe49wRnnR4 https://blog.wpsec.com/wordpress-xxe-in-media-library-cve-2021-29447/s3c_krd
2021-05-21 10:30:15WordPress XXE Vulnerability in Media Library - CVE-2021-29447 - WPSec https://t.co/Z3kvzfx9aV https://blog.wpsec.com/wordpress-xxe-in-media-library-cve-2021-29447/_r_netsec
2021-05-21 10:01:05WordPress XXE Vulnerability in Media Library – CVE-2021-29447 https://t.co/x48Pt2ZlL7 #BugBounty #XXE #WordPress… https://t.co/PQlUai1cqx https://blog.wpsec.com/wordpress-xxe-in-media-library-cve-2021-29447/ https://twitter.com/i/web/status/1395679771103748096WPSecScanner
2021-05-06 09:00:03CVE-2021-29447 Wordpress XXE漏洞 https://t.co/u3AHjGTW8T https://www.pwnwiki.org/index.php?title=CVE-2021-29447_Wordpress_XXE%E6%BC%8F%E6%B4%9Epwnwikiorg
2021-05-03 18:40:04CVE-2021-29447 https://t.co/fOdZJAzNpw #HarsiaInfo https://har-sia.info/CVE-2021-29447.htmlHar_sia
2021-05-02 18:30:04CVE-2021-29447 https://t.co/fOdZJAzNpw #HarsiaInfo https://har-sia.info/CVE-2021-29447.htmlHar_sia
2021-04-30 04:00:05Vulnerabilidad de inyección de entidad externa XML en WordPress https://t.co/MqrwbbIapK #CVE-2021-29447 #vulnerabilidades #Wordpress #XXE https://csirt.telconet.net/comunicacion/noticias-seguridad/vulnerabilidad-de-inyeccion-de-entidad-externa-xml-en-wordpress/CSIRT_Telconet
2021-04-29 22:40:13Venerdì 30 Aprile ore 12 Première nuovo video WordPress XXE CVE-2021-29447 https://t.co/HMuf5FqJ2R imposta il prome… https://t.co/AqbhA6d7BV https://www.youtube.com/watch?v=k0jvmV4G3zU https://twitter.com/i/web/status/1387897120707989506rev3rsesecurity
2021-04-29 09:50:06CVE-2021-29447 #WordPress XXE: you don't need a wave file to set iXML metadata! bash: echo -en 'RIFF\xb8\x00\x00\x… https://t.co/QE60xFBlTf https://twitter.com/i/web/status/1387703420044386310AndreaTheMiddle
2021-04-27 20:40:09Virtual patching CVE-2021-29447 with Snuffleupagus — https://t.co/6fIf4ccXcU https://dustri.org/b/virtual-patching-cve-2021-29447-with-snuffleupagus.htmldustriorg
2021-04-27 20:10:16Vulnerabilidad en #WordPress 5.7 XXE - CVE-2021-29447 PHP8 - Authenticated XML External Entity (XXE) injection - Ar… https://t.co/mUEuxD9nHW https://twitter.com/i/web/status/1387134706005676034elhackernet
2021-04-22 17:12:18New post from https://t.co/9KYxtdZjkl (CVE-2021-29447 (wordpress)) has been published on https://t.co/uhaWbKamIS http://www.sesin.at https://www.sesin.at/2021/04/22/cve-2021-29447-wordpress/www_sesin_at
2021-04-22 17:11:35New post from https://t.co/uXvPWJy6tj (CVE-2021-29447 (wordpress)) has been published on https://t.co/55yvwnMuho http://www.sesin.at https://www.sesin.at/2021/04/22/cve-2021-29447-wordpress/WolfgangSesin
2021-04-18 18:30:04CVE-2021-29447 https://t.co/fOdZJAzNpw #HarsiaInfo https://har-sia.info/CVE-2021-29447.htmlHar_sia
2021-04-18 12:50:1015日に修正された WordPress XXE 試しました _(:3 」∠ )_ --- はてなブログに投稿しました #はてなブログ WordPress の XXE(CVE-2021-29447) やる - まったり技術ブログ https://t.co/qxCFnLrr8Q https://blog.motikan2010.com/entry/WordPress%E3%81%AEXXE%28CVE-2021-29447%29%E3%82%84%E3%82%8Bmotikan2010
2021-04-18 09:21:05GitHub - motikan2010/CVE-2021-29447: WordPress - Authenticated XXE (CVE-2021-29447) https://t.co/ubT1LGAyc6 https://github.com/motikan2010/CVE-2021-29447nuria_imeq
2021-04-18 01:10:13exploit: CVE-2021-29447: WordPress 5.6-5.7 - Authenticated XXE (PoC) Red Team Tactics: 1. sJET allows an easy expl… https://t.co/15SRcExHTi https://twitter.com/i/web/status/1383587686485659656AlirezaGhahrood
2021-04-17 17:00:18New post from https://t.co/9KYxtdHHVL (CVE-2021-29447) has been published on https://t.co/RJqIo1YoDy http://www.sesin.at https://www.sesin.at/2021/04/17/cve-2021-29447/www_sesin_at
2021-04-17 17:00:11New post from https://t.co/uXvPWJPHkR (CVE-2021-29447) has been published on https://t.co/KudnkSEagX http://www.sesin.at https://www.sesin.at/2021/04/17/cve-2021-29447/WolfgangSesin
2021-04-16 22:40:03GitHub - motikan2010/CVE-2021-29447 - https://t.co/a5JFwSYzSI https://github.com/motikan2010/CVE-2021-29447piedpiper1616
2021-04-16 00:10:05Hi, I'm CVE-2021-29447. I was never good with numbers though, so you can call me Aquatic Cabassou https://t.co/oHAxP7BTvL https://nvd.nist.gov/vuln/detail/CVE-2021-29447vulnonym
2021-04-15 23:30:06Wordpress - CVE-2021-29447: https://t.co/HRcEDRKuTW https://github.com/WordPress/wordpress-develop/security/advisories/GHSA-rv47-pc52-qrhhLinInfoSec
2021-04-15 23:20:07CVE Liste posted "CVE-2021-29447" See full original article: https://t.co/FZKk9xYLNn All our feeds: https://t.co/EOLcNJGCHf https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-29447 https://secnews.physaphae.frInfoSecPhysa
2021-04-15 22:50:12CVE-2021-29447 Wordpress is an open source CMS. A user with the ability to upload files (like an Author) can explo… https://t.co/vtBSoLDjEp https://twitter.com/i/web/status/1382826906026962945VulmonFeeds
2021-04-15 22:50:09CVE-2021-29447 Wordpress is an open source CMS. A user with the ability to upload files (like an Author) can exploi… https://t.co/plw3NO41wm https://twitter.com/i/web/status/1382827420424736769CVEnew
2021-04-15 22:10:10🚨 NEW: CVE-2021-29447 🚨 Wordpress is an open source CMS. A user with the ability to upload files (like an Author) c… https://t.co/4bzqCNNifR https://twitter.com/i/web/status/1382816110467162115threatintelctr
2021-04-15 21:40:18🚨 NEW: CVE-2021-29447 🚨 Wordpress is an open source CMS. A user with the ability to upload files (like an Author) c… https://t.co/lZkxR88cMz https://twitter.com/i/web/status/1382808551622578176threatintelctr