RE: Wordpress <= v2.1.0

看板Bugtraq作者emccarty.時間19年前 (2007/03/06 07:38)推噓0(0推 0噓 0→)

留言0則, 0人參與討論串1/1

2.0.2 Tested and Does not appear Vulnerable. -----Original Message----- From: ciri@virtuax.be [mailto:ciri@virtuax.be]=20 Sent: Sunday, March 04, 2007 4:56 PM To: bugtraq@securityfocus.com Subject: Wordpress <=3D v2.1.0 If you're logged in into wordpress as an admin, your comments aren't properly sanitized, thus allowing an XSS to be posted. This can be exploited using XSRF techniques. More info & PoC: http://www.virtuax.be/advisories/Advisory4-20022007.txt

‣ 返回看板[ Bugtraq ] 臭蟲

‣ 更多 emccarty. 的文章

文章代碼(AID): #15xAeH00 (Bugtraq)