6 matches found
Fedora Update for wordpress FEDORA-2008-7760
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Sql injection
WordPress before 2.6.2 does not properly handle MySQL warnings about insertion of username strings that exceed the maximum column width of the userlogin column, and does not properly handle space characters when comparing usernames, which allows remote attackers to change an arbitrary user's...
CVE-2008-4106
WordPress before 2.6.2 does not properly handle MySQL warnings about insertion of username strings that exceed the maximum column width of the userlogin column, and does not properly handle space characters when comparing usernames, which allows remote attackers to change an arbitrary user's...
CVE-2008-4106
WordPress prior to 2.6.2 is affected by CVE-2008-4106: improper handling of MySQL warnings about username length and trailing spaces in username comparison can allow a remote attacker to change another user’s password by registering a similar username and requesting a password reset. This is tied...
CVE-2008-4107
CVE-2008-4107 (and related CVEs CVE-2008-2107/2108) involves PHP 5.2.x generating non-cryptographically strong random numbers due to flaws in rand/mt_rand seeding. The Initial Description notes this weakness affected security‑relevant functionality (password reset in Joomla! 1.5.x and WordPress p...
Fedora 9 : wordpress-2.6.2-1.fc9 (2008-7902)
http://wordpress.org/development/2008/09/wordpress-262/ Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...