BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
WordPress XSS vulnerability in RSS Feed Generator Nov 25 2008 10:21PM
Jeremias Reith (jr terragate net)
===== noXSS.org Security Advisory ======

Advisory: WordPress XSS vulnerability in RSS Feed Generator
Author: Jeremias Reith <jr (at) noxss (dot) org [email concealed]>
Published: 2008/11/25
Affected: WordPress < 2.6.5

Summary
=======

WordPress prior to v2.6.3 fails to sanitize the Host header variable
correctly when generat...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus