WordPress 'request_filesystem_credentials' Function Multiple Cross Site Scripting Vulnerabilities

Bugtraq ID: 65233
Class: Input Validation Error
CVE: CVE-2010-5294
Remote: Yes
Local: No
Published: Nov 30 2010 12:00AM
Updated: Nov 30 2010 12:00AM
Credit: Vendor reported these issues.
Vulnerable: WordPress WordPress 2.9.2
WordPress WordPress 2.9.1
WordPress WordPress 2.8.6
WordPress WordPress 2.8.5
WordPress WordPress 2.8.4
WordPress WordPress 2.8.3
WordPress WordPress 2.8.2
WordPress WordPress 2.8.1
WordPress WordPress 2.6.5
WordPress WordPress 2.6.2
WordPress WordPress 2.6.1
WordPress WordPress 2.5.1
WordPress WordPress 2.3.3
WordPress WordPress 2.3.2
WordPress WordPress 2.3.1
WordPress WordPress 2.2.3
WordPress WordPress 2.2.2
WordPress WordPress 2.2.1
WordPress WordPress 2.1.3
WordPress WordPress 2.1.2
WordPress WordPress 2.1.1
WordPress WordPress 2.0.11
WordPress WordPress 2.0.10
WordPress WordPress 2.0.7
WordPress WordPress 2.0.6
WordPress WordPress 2.0.5
WordPress WordPress 2.0.4
WordPress WordPress 2.0.3
WordPress WordPress 2.0.2
WordPress WordPress 2.0.1
WordPress WordPress 2.0
WordPress WordPress 3.0.1
WordPress WordPress 3.0
WordPress WordPress 2.9.1.1
WordPress WordPress 2.9
WordPress WordPress 2.8
WordPress WordPress 2.7.1
WordPress WordPress 2.7
WordPress WordPress 2.6
WordPress WordPress 2.5
WordPress WordPress 2.3
WordPress WordPress 2.2
WordPress WordPress 2.1
WordPress WordPress 2.0.9
Not Vulnerable: WordPress WordPress 3.0.2


 

Privacy Statement
Copyright 2010, SecurityFocus