11 matches found
Mageia: Security Advisory (MGASA-2015-0202)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Cross-Site Scripting (XSS)
Wordpress is vulnerable to cross-site scripting XSS attacks. The attacks are possible because of the incomplete fix for CVE-2015-3440. It leads to improper storage of long comment due to the limitations on the MySQL TEXT data type...
Cross site scripting
Cross-site scripting XSS vulnerability in wp-includes/wp-db.php in WordPress before 4.2.2 allows remote attackers to inject arbitrary web script or HTML via a long comment that is improperly stored because of limitations on the MySQL TEXT data type. NOTE: this vulnerability exists because of an...
CVE-2015-3440
Cross-site scripting XSS vulnerability in wp-includes/wp-db.php in WordPress before 4.2.1 allows remote attackers to inject arbitrary web script or HTML via a long comment that is improperly stored because of limitations on the MySQL TEXT data type...
CVE-2015-3440
Cross-site scripting XSS vulnerability in wp-includes/wp-db.php in WordPress before 4.2.1 allows remote attackers to inject arbitrary web script or HTML via a long comment that is improperly stored because of limitations on the MySQL TEXT data type...
Fedora Update for wordpress FEDORA-2015-6778
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for wordpress FEDORA-2015-6808
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for wordpress FEDORA-2015-6790
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated wordpress packages fix security vulnerabilities
Updated wordpress packages fixes security vulnerabilities: The wordpress package has been updated to version 3.9.6, which fixes multiple cross-site scripting issues, including CVE-2015-3440, and other bugs. Note that upstream has advised us that WordPress 3.9.x is no longer supported. As this...
WordPress Overly Long Comment Cross-Site Scripting (CVE-2015-3440)
A cross-site scripting vulnerability has been reported in WordPress comment mechanism. Successful exploitation of this vulnerability would allow remote attackers to inject an arbitrary web script into the affected system, and possibly gain root privileges...
CVE-2015-3440
creationtimestamp| type| source ---|---|--- 2015-04-27 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/36844...