Unrated severityNVD Advisory· Published Jul 10, 2009· Updated Jun 16, 2026
CVE-2009-2431
CVE-2009-2431
Description
WordPress 2.7.1 places the username of a post's author in an HTML comment, which allows remote attackers to obtain sensitive information by reading the HTML source.
Affected products
2cpe:2.3:a:wordpress:wordpress:2.7.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:wordpress:wordpress:2.7.1:*:*:*:*:*:*:*
- (no CPE)range: =2.7.1
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.