Categories

Applications (222)
Blogs (7)
Content Management (148)
Customer Relationship (2)
Discussion Boards (29)
E-Commerce (14)
General Purpose Directories (2)
Image Galleries (18)
Mailing Lists (1)
Tips (3)
Vulnerabilities (337)
Access Bypass (50)
Cross Site Scripting (123)
Denial Of Service (2)
File Inclusion (51)
Information Disclosure (15)
Privilege Escalation (2)
Remote Command Execution (16)
Session Hijacking (2)
SQL Injection (130)
« Joomla SimpleFAQ components SQL Injection
Coppermine Photo Gallery YABBSE.INC.PHP Remote File Include Vulnerability »

WordPress PHP_Self Cross-Site Scripting Vulnerability

Published by KM Chow August 27th, 2007 in Applications, Blogs and Cross Site Scripting.

Application Affected:
WordPress WordPress 2.1.2
WordPress WordPress 2.1.1
WordPress WordPress 2.0.10
WordPress WordPress 2.0.7
WordPress WordPress 2.0.6
WordPress WordPress 2.0.5
WordPress WordPress 2.0.4
WordPress WordPress 2.0.3
WordPress WordPress 2.0.2
WordPress WordPress 2.0.1
WordPress WordPress 2.0
WordPress WordPress 2.2 Revision 5003
WordPress WordPress 2.2 Revision 5002
WordPress WordPress 2.1.3-RC1
WordPress WordPress 2.1
WordPress WordPress 2.0.10-RC1

Vendor’s URL: WordPress HomePage
Bug Type: Input Validation
Risk Level: Medium

Solution: The fix will be included in newer version of WordPress 2.2.2 .

0 Responses to “WordPress PHP_Self Cross-Site Scripting Vulnerability”

Feed for this Entry Trackback Address
  1. No Comments

Leave a Reply

You must login to post a comment.

« Joomla SimpleFAQ components SQL Injection
Coppermine Photo Gallery YABBSE.INC.PHP Remote File Include Vulnerability »

Subscribe

Latest

Archives



Valid XHTML 1.0 Transitional