WordPress.com Blogs Vulnerable

Posted by Philipp

March 9, 2008

WordPress.com (2.3.2) is vulnerable to two Cross-Site Scripting vulnerabilities. It is important to note that these only affect WordPress.com blogs.

Proof of concept exploits have been released and there is a danger that an XSS Worm could use this type of vulnerability to compromise thousands of WordPress.com blogs. (See developer verse hosted blogs debate.).

Doz from hackerscenter.com released the advisory. The full disclosure advisory is available and a Video demonstration was also released.

Note (again):These vulnerabilities only affect the Hosting Platform WordPress.com as the download package of WordPress doesn’t include invite.php or users.php file.

Advisories, Alerts, WordPress

Random Posts

If you enjoyed this post, please leave a comment or subscribe to the feed and get future articles delivered to your feed reader.

Comments

Comment by Matt B. on March 10, 2008 @ 11:28 am

That’s weird. I would have thought WP.com would run the latest code…

Comment by Andrea_R on March 10, 2008 @ 3:14 pm

What about wordpressMU? It doesn;t contain the invite.php file, but it 8does* contain users.php.

http://trac.mu.wordpress.org/browser/trunk/wp-admin/users.php

Comment by Donncha O Caoimh on March 10, 2008 @ 4:31 pm

Thanks for blogging this. The original blogger never contacted us with that exploit, but it’s fixed now.

Comment by DK on March 11, 2008 @ 6:31 pm

Donncha, glad we could help my man.

Pingback by Wp Wordpress » Blog Archive » Episode 38: WordPress 2.5 not released… yet! on March 19, 2008 @ 1:14 am

[...] VanFossen is also jazzed about WordPress 2.5 coming to WordPress.com, details a security vulnerability for WordPress.com blogs was fixed in less than 10 minutes after initial report, Matt Mullenweg’s report that more [...]

Pingback by Episode 38: WordPress 2.5 not released… yet! | PHP Podcasts on April 5, 2008 @ 2:28 pm