WordPress information leakage and illegal operation vulnerability-vulnerability warning-the black bar safety net

2012-07-03T00:00:00
ID MYHACK58:62201234227
Type myhack58
Reporter 佚名
Modified 2012-07-03T00:00:00

Description

Affected system:

WordPress WordPress 3. x

Description:

--------------------------------------------------------------------------------

WordPress is a PHP language and MySQL database development Blog(blog, blog)engine, users can support PHP and MySQL database server on build your own Blog.

WordPress 3.4.1 before the version in the processing XMLRPC request to the user to check the process in the presence of errors that can lead to information leakage and illegal editing of the Bulletin operation.

<*source: vendor

Links: http://secunia.com/advisories/49726/

http://wordpress.org/news/2012/06/wordpress-3-4-1/

*>

Recommendations:

--------------------------------------------------------------------------------

Manufacturers patch:

WordPress

---------

The current vendors have released an upgrade patch to fix this security issue, please go to the manufacturers home page download:

http://wordpress.org/