2 matches found
[SECURITY] [DSA 1502-1] New wordpress packages fix multiple vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1502-1 [email protected] http://www.debian.org/security/ Noah Meyerhans February 22, 2008 http://www.debian.org/security/faq -...
CVE-2007-3238
Cross-site scripting XSS vulnerability in functions.php in the default theme in WordPress 2.2 allows remote authenticated administrators to inject arbitrary web script or HTML via the PATHINFO REQUESTURI to wp-admin/themes.php, a different vulnerability than CVE-2007-1622. NOTE: this might not...