The get_allowed_mime_types function in wp-includes/functions.php in WordPress before 3.6.1 does not require the unfiltered_html capability for uploads of .htm and .html files, which might make it easier for remote authenticated users to conduct cross-site scripting (XSS) attacks via a crafted file.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | wordpress | < 3.6.1+dfsg-1 | wordpress_3.6.1+dfsg-1_all.deb |
Debian | 11 | all | wordpress | < 3.6.1+dfsg-1 | wordpress_3.6.1+dfsg-1_all.deb |
Debian | 10 | all | wordpress | < 3.6.1+dfsg-1 | wordpress_3.6.1+dfsg-1_all.deb |
Debian | 999 | all | wordpress | < 3.6.1+dfsg-1 | wordpress_3.6.1+dfsg-1_all.deb |
Debian | 13 | all | wordpress | < 3.6.1+dfsg-1 | wordpress_3.6.1+dfsg-1_all.deb |