No content since 2004
Feel free to donate
Chris @ MyITforum
Subscribe in a reader
Subscribe to Chris Mosby at myITforum.com by Email
WordPress XML-RPC Post Edit Vulnerability Secunia Advisory:SA28823 Release Date:2008-02-07 Critical:Less critical Impact:Security BypassManipulation of data Where:From remote Solution Status:Vendor Patch Software:WordPress 2.xDescription:A vulnerability has been reported in WordPress, which can be exploited by malicious users to bypass certain security restrictions and to manipulate data.The xmlrpc.php script does not properly restrict access to the edit functionality. This can be exploited to edit other users' posts.Successful exploitation requires valid user credentials.The vulnerability is reported in version 2.3.2. Prior versions may also be affected.Solution:Update to version 2.3.3.Provided and/or discovered by:Reported by the vendor.Original Advisory:http://wordpress.org/development/2008/02/wordpress-233/
WordPress XML-RPC Post Edit Vulnerability
Secunia Advisory:SA28823
Release Date:2008-02-07
Critical:Less critical
Impact:Security BypassManipulation of data
Where:From remote
Solution Status:Vendor Patch
Software:WordPress 2.x
Source: WordPress XML-RPC Post Edit Vulnerability - Advisories - Secunia
No Comments