Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 543
Alerts This Week
Warning Icon 1 543

Debian: DSA-4985-1 Moderate: Wordpress XSS and User Impersonation Issues

debian
Calendar Grey October 14, 2021
Debian Logo
Several security flaws in WordPress have enabled remote attackers to carry out XSS exploits or take on the identities of other users. Please update immediately.
Several vulnerabilities were discovered in Wordpress, a web blogging tool

Summary

For the oldstable distribution (buster), these problems have been fixed
in version 5.0.14+dfsg1-0+deb10u1.

For the stable distribution (bullseye), these problems have been fixed in
version 5.7.3+dfsg1-0+deb11u1.

We recommend that you upgrade your wordpress packages.

For the detailed security status of wordpress please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/wordpress

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/



Package: wordpress
CVE ID: CVE-2021-39200 CVE-2021-39201

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.