Description
BUGTRAQ ID: 25639
WordPress是一款免费的论坛Blog系统。
远程攻击者可以通过添加名为no_filter的字段绕过unfiltered_html权限功能,这允许没有unfiltered_html权限的用户通过提交特制的POST请求在博客中注入任意HTML和脚本代码。
WordPress 2.2.2
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
<a href="http://wordpress.org/latest.tar.gz" target="_blank">http://wordpress.org/latest.tar.gz</a>
{"href": "https://www.seebug.org/vuldb/ssvid-2218", "status": "details", "bulletinFamily": "exploit", "modified": "2007-09-14T00:00:00", "title": "WordPress Unfiltered_HTML\u5b57\u6bb5\u540d\u79f0HTML\u6ce8\u5165\u6f0f\u6d1e", "cvss": {"vector": "NONE", "score": 0.0}, "sourceHref": "", "cvelist": [], "description": "BUGTRAQ ID: 25639\r\n\r\nWordPress\u662f\u4e00\u6b3e\u514d\u8d39\u7684\u8bba\u575bBlog\u7cfb\u7edf\u3002\r\n\r\n\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u4ee5\u901a\u8fc7\u6dfb\u52a0\u540d\u4e3ano_filter\u7684\u5b57\u6bb5\u7ed5\u8fc7unfiltered_html\u6743\u9650\u529f\u80fd\uff0c\u8fd9\u5141\u8bb8\u6ca1\u6709unfiltered_html\u6743\u9650\u7684\u7528\u6237\u901a\u8fc7\u63d0\u4ea4\u7279\u5236\u7684POST\u8bf7\u6c42\u5728\u535a\u5ba2\u4e2d\u6ce8\u5165\u4efb\u610fHTML\u548c\u811a\u672c\u4ee3\u7801\u3002\r\n\r\n\n\nWordPress 2.2.2\n \u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\n\r\n<a href=\"http://wordpress.org/latest.tar.gz\" target=\"_blank\">http://wordpress.org/latest.tar.gz</a>", "viewCount": 4, "published": "2007-09-14T00:00:00", "sourceData": "", "id": "SSV:2218", "enchantments_done": [], "type": "seebug", "lastseen": "2017-11-19T21:58:43", "reporter": "Root", "enchantments": {"score": {"value": -0.4, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": -0.4}, "references": [], "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1645324023}}
{}
WordPress Unfiltered_HTML字段名称HTML注入漏洞