Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Gentoo: GLSA-200701-10 Normal: WordPress SQL Injection And XSS Threats

gentoo
Calendar Grey January 16, 2007
Dist Gentoo Esm H88
WordPress running on Gentoo is vulnerable to SQL injections, information leaks, and cross-site scripting (XSS) threats. Apply updates to mitigate these security issues.
WordPress is vulnerable to SQL injection, information disclosure, and cross-site scripting attacks.

Summary

Gentoo Linux Security Advisory GLSA 200701-10 https://security.gentoo.org/ Severity: Normal Title: WordPress: Multiple vulnerabilities Date: January 15, 2007 Bugs: #159229 ID: 200701-10

Synopsis ======= WordPress is vulnerable to SQL injection, information disclosure, and cross-site scripting attacks.
Background ========= WordPress is a popular personal publishing platform with a web interface.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-apps/wordpress < 2.0.6 >= 2.0.6
========== When decoding trackbacks with alternate character sets, WordPress does not correctly sanitize the entries before further modifying a SQL query. WordPress also displays di...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory Gentoo XSS SQL injection information disclosure normal severity WordPress

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory Gentoo XSS SQL injection information disclosure normal severity WordPress

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here