当前位置：首页 > 最新报道 > 最新漏洞 > Other

WordPress Comment Author URI跨站脚本漏洞

来源：岁月联盟编辑：zhuzhu 时间：2009-09-09

WordPress Comment Author URI跨站脚本漏洞影响版本:
WordPress Wordpress (B2) 0.6.2 .1
WordPress Wordpress (B2) 0.6.2
WordPress WordPress 2.8.1
WordPress WordPress 2.6.5
WordPress WordPress 2.6.2
WordPress WordPress 2.6.1
WordPress WordPress 2.5.1
WordPress WordPress 2.3.3
WordPress WordPress 2.3.2
WordPress WordPress 2.3.1
WordPress WordPress 2.2.3
WordPress WordPress 2.2.2
WordPress WordPress 2.2.1
WordPress WordPress 2.2.1
WordPress WordPress 2.1.3
WordPress WordPress 2.1.3
WordPress WordPress 2.1.2
WordPress WordPress 2.1.1
WordPress WordPress 2.0.11
WordPress WordPress 2.0.10
WordPress WordPress 2.0.7
WordPress WordPress 2.0.6
WordPress WordPress 2.0.5
WordPress WordPress 2.0.4
WordPress WordPress 2.0.3
WordPress WordPress 2.0.2
WordPress WordPress 2.0.1
WordPress WordPress 2.0
WordPress WordPress 1.5.2
WordPress WordPress 1.5.1 .3
WordPress WordPress 1.5.1 .2
WordPress WordPress 1.5.1
WordPress WordPress 1.5
WordPress WordPress 1.3.1
WordPress WordPress 1.2.2
WordPress WordPress 1.2.1
+ Gentoo Linux
WordPress WordPress 1.2
+ Gentoo Linux 1.4
+ Gentoo Linux
WordPress WordPress 0.71
WordPress WordPress 0.7
WordPress WordPress 2.8
WordPress WordPress 2.6
WordPress WordPress 2.5
WordPress WordPress 2.3
WordPress WordPress 2.2 Revision 5003
WordPress WordPress 2.2 Revision 5002
WordPress WordPress 2.2
WordPress WordPress 2.1.3-RC2
WordPress WordPress 2.1.3-RC1
WordPress WordPress 2.1
WordPress WordPress 2.0.10-RC2
WordPress WordPress 2.0.10-RC1
Gentoo Linux漏洞描述:
Bugraq ID: 35755

WordPress是一款流行的blog系统。
WordPress存在输入验证问题，远程安全者可以利用漏洞获得敏感信息。
WordPress不正确过滤评注作者URLs，当管理员查看时可导致重定向到其他站点而泄漏敏感信息。<*参考
http://bugs.gentoo.org/show_bug.cgi?id=278492
*>
SEBUG安全建议:
用户可联系供应商升级到WordPress最新版本：
WordPress WordPress 2.1
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.1.3-RC1
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.2
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.10-RC1
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.2 Revision 5003
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.10-RC2
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.2 Revision 5002
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.1.3-RC2
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 0.7
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 0.71
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 1.2
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 1.2.1
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 1.2.2
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 1.5
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 1.5.1 .3
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 1.5.1
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 1.5.1 .2
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 1.5.2
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.1
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.10
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.2
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.3
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.4
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.5
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.6
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.7
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.1.1
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.1.2
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.1.3
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.1.3
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.2.1
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.2.1
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.2.2
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz

上一篇：FreeBSD IATA驱动本地拒绝服务漏洞

下一篇：Sun Solaris审核竞争条件本地拒绝服务漏洞

当前位置：首页 > 最新报道 > 最新漏洞 > Other

WordPress Comment Author URI跨站脚本漏洞

图片内容

最近更新

随机推荐