Categories

Applications (222)
Blogs (7)
Content Management (148)
Customer Relationship (2)
Discussion Boards (29)
E-Commerce (14)
General Purpose Directories (2)
Image Galleries (18)
Mailing Lists (1)
Tips (3)
Vulnerabilities (337)
Access Bypass (50)
Cross Site Scripting (123)
Denial Of Service (2)
File Inclusion (51)
Information Disclosure (15)
Privilege Escalation (2)
Remote Command Execution (16)
Session Hijacking (2)
SQL Injection (130)
« phShoutBox “phadmin” Security Bypass
WordPress “cat” Directory Traversal Vulnerability »

WordPress PHP Code Execution and XSS

Published by TL Guan May 20th, 2008 in Access Bypass, Content Management and Cross Site Scripting.

Application: WordPress
Affected Version: version 2.5 and prior versions
Vendor’s URL: WordPress
Bug Type: Cross Site Scripting and security bypass
Risk Level: Critical

Solution:
Update to version 2.5.1.

Subscribe

Latest

Archives



Valid XHTML 1.0 Transitional