Unrated severityNVD Advisory· Published Jan 29, 2007· Updated Jun 16, 2026
CVE-2007-0539
CVE-2007-0539
Description
The wp_remote_fopen function in WordPress before 2.1 allows remote attackers to cause a denial of service (bandwidth or thread consumption) via pingback service calls with a source URI that corresponds to a large file, which triggers a long download session without a timeout constraint.
Affected products
2cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*range: <=2.0
- (no CPE)range: <2.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.