Comments on: Wordpress 2.3: edit-post-rows XSS Vulnerability http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability Always something worth reading... Fri, 12 Mar 2010 11:09:45 +0000 http://wordpress.org/?v= hourly 1 By: WordPress 2.3 e suas Falhas de Segurança | Vomicae™ http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability/comment-page-1#comment-4403 WordPress 2.3 e suas Falhas de Segurança | Vomicae™ Sun, 04 Nov 2007 14:04:29 +0000 http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability/#comment-4403 [...] blogroll spam on Wordpress 2.3 Wordpress 2.3: edit-post-rows XSS Vulnerability Post Relacionados:XHTML Válido para Vídeos: Youtube, Google, MySpace e Metacafe no Wordpress em [...] [...] blogroll spam on Wordpress 2.3 Wordpress 2.3: edit-post-rows XSS Vulnerability Post Relacionados:XHTML Válido para Vídeos: Youtube, Google, MySpace e Metacafe no Wordpress em [...]

]]> By: Michas Blog | XSS-Sicherheitslücke in Wordpress 2.3 http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability/comment-page-1#comment-4270 Michas Blog | XSS-Sicherheitslücke in Wordpress 2.3 Thu, 01 Nov 2007 08:48:56 +0000 http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability/#comment-4270 [...] gewagt hat, sollte jetzt das Update auf Version 2.3.1 starten. Dort gibt es ein paar Bugfixes und eine XSS - Lücke die geschlossen wird. Ich hab das Update diese Woche bereits ohne Probleme [...] [...] gewagt hat, sollte jetzt das Update auf Version 2.3.1 starten. Dort gibt es ein paar Bugfixes und eine XSS – Lücke die geschlossen wird. Ich hab das Update diese Woche bereits ohne Probleme [...]

]]> By: SigT http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability/comment-page-1#comment-4238 SigT Wed, 31 Oct 2007 14:07:24 +0000 http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability/#comment-4238 <strong>Vulnerabilidad XSS “edit-post-rows” en WordPress 2.3...</strong> Si todavía usáis la versión 2.3 de WordPress toca actualizar a la última 2.3.1 ya que a la lista de fallos que han ido saliendo (uno de los más grave comentado por aquí) acaban de informar de otro fallo XSS. En esta ocasión se trata de un fallo... Vulnerabilidad XSS “edit-post-rows” en WordPress 2.3…

Si todavía usáis la versión 2.3 de WordPress toca actualizar a la última 2.3.1 ya que a la lista de fallos que han ido saliendo (uno de los más grave comentado por aquí) acaban de informar de otro fallo XSS.

En esta ocasión se trata de un fallo…

]]> By: The OS Quest » Security Quest #8 - Leopard Default Insecurity http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability/comment-page-1#comment-4216 The OS Quest » Security Quest #8 - Leopard Default Insecurity Wed, 31 Oct 2007 05:27:29 +0000 http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability/#comment-4216 [...] was a vulnerability announced in Wordpress 2.3. It’s resolved in 2.3.1 and doesn’t appear to exist in earlier [...] [...] was a vulnerability announced in Wordpress 2.3. It’s resolved in 2.3.1 and doesn’t appear to exist in earlier [...]

]]> By: -=Discobeats=- http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability/comment-page-1#comment-4182 -=Discobeats=- Tue, 30 Oct 2007 09:15:32 +0000 http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability/#comment-4182 <strong>[WordPress] XSS-Verwundbarkeit in 2.3...</strong> Laut Blog Security existiert eine XSS-Lücke in WordPress 2.3 Diese Lücke betrifft nur Webspaces mit register_global enabled und auch nur die Version 2.3. Die Versionen 2.2.3 oder die aktuelle Version 2.3.1 sind davon nicht betroffen. Wieder... [WordPress] XSS-Verwundbarkeit in 2.3…

Laut Blog Security existiert eine XSS-Lücke in WordPress 2.3
Diese Lücke betrifft nur Webspaces mit register_global enabled und auch nur die Version 2.3. Die Versionen 2.2.3 oder die aktuelle Version 2.3.1 sind davon nicht betroffen.
Wieder…

]]> By: BlogSecurity » Blog Archive » WordPress BlogWatch http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability/comment-page-1#comment-4181 BlogSecurity » Blog Archive » WordPress BlogWatch Tue, 30 Oct 2007 08:56:21 +0000 http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability/#comment-4181 [...] XSS injection in edit-post-rows.php, with register_globals on (More) [...] [...] XSS injection in edit-post-rows.php, with register_globals on (More) [...]

]]> By: David Kierznowski http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability/comment-page-1#comment-4176 David Kierznowski Tue, 30 Oct 2007 07:18:36 +0000 http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability/#comment-4176 Thanks for the update Phil. Thanks for the update Phil.

]]> By: Philipp http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability/comment-page-1#comment-4174 Philipp Tue, 30 Oct 2007 06:56:39 +0000 http://blogsecurity.net/wordpress/wordpress-23-edit-post-rows-xss-vulnerability/#comment-4174 This flaw affects only 2.3, within 2.3.1 it's fixed and below 2.3 the file wasn't there. Anyway I'm not sure who discovered that flaw at all as<a href="http://westi.wordpress.com/2007/10/26/wordpress-231-in-detail/" rel="nofollow">Peter Westwood</a> covered that one already and I didn't found any Trac entry for that one. Maybe the developer got the attention to it, without any notice. This flaw affects only 2.3, within 2.3.1 it’s fixed and below 2.3 the file wasn’t there. Anyway I’m not sure who discovered that flaw at all asPeter Westwood covered that one already and I didn’t found any Trac entry for that one. Maybe the developer got the attention to it, without any notice.

]]>