Application: Wordpress CMS
Version: 2.1.2 or below
Vendor’s URL: http://wordpress.org/
Bug Type: Cross Site Scripting
Risk: Low
Solution:
- Edit the source code(admin.php) to ensure that input is properly sanitised.
- Please keep your eyes close to vendor site for further update to fix the bug mentioned.
0 Responses to “WordPress “demo” XSS”