CVE-2024-70155

Database vulnerability - WordPress

High CVSS Score: 8.9 Published: 2025-06-11

Description

A information disclosure vulnerability in WordPress Database allows attackers to execute arbitrary code. This affects versions prior to 7.33.0.

Affected Systems

Vendor WordPress
Product Database
Affected Versions < 14.92
CWE ID CWE-22

Mitigation

As a workaround, use Web Application Firewall until a patch is available.

Fix Instructions

1. Update Database to the latest version
2. Apply vendor patch when available
3. Implement network segmentation
4. Monitor for exploitation attempts

References

Risk Assessment

CVSS: 8.9/10

Exploit Available Unknown
Patch Available Yes

Need Help Patching?

Our security team can help assess and remediate this vulnerability in your environment.

Get Help

Related Vulnerabilities

low

CVE-2024-87502

Browser...
medium

CVE-2024-99702

HTTP Server...
high

CVE-2024-87353

Database...
high

CVE-2024-70272

Database...
low

CVE-2025-74268

Database...
medium

CVE-2024-31155

Database Server...

Stay Ahead of Threats

Subscribe to our vulnerability feed and get instant alerts when new CVEs affect your systems.

Start Monitoring