BugTraq
Back to list
|
Post reply
Wordpress <= v2.1.0
Mar 05 2007 12:55AM
ciri virtuax be
(2 replies)
If you're logged in into wordpress as an admin, your comments aren't properly sanitized, thus allowing an XSS to be posted. This can be exploited using XSRF techniques.
More info & PoC: http://www.virtuax.be/advisories/Advisory4-20022007.txt
[ reply ]
Re: Wordpress <= v2.1.0
Mar 06 2007 08:29AM
vvitkov (at) intergenia (dot) de [email concealed] (vvitkov intergenia de)
RE: Wordpress <= v2.1.0
Mar 05 2007 10:25PM
McCarty, Eric C. (emccarty er ucsd edu)
Privacy Statement
Copyright 2010, SecurityFocus
More info & PoC: http://www.virtuax.be/advisories/Advisory4-20022007.txt
[ reply ]