Alarming WordPress Security Vulnerabilities
beNi released 3 alarming vulnerabilities in the popular WordPress blog platform
- Cross Site Scripting – it didn’t work for me
- Forced Redirect – it worked for me
- Directory Traversal – n /a
Due to the really huge install base, I really hope that the folks at wordpress.org issue a patch quickly to address these vulnerabilities. Update : It sems that the site hosting the proof of concept exploits is down for maintenance.(thanks leion)
Thank you for reading this post. You can now Read Comment (1) or Leave A Trackback.
Print This Post
Post Info
This entry was posted on Sunday, February 11th, 2007 . Tagged with:You can follow any responses to this entry through the Comments Feed. You can Leave A Comment, or A Trackback.
Previous Post: How to Turn Firefox Into an Attack Webserver »
Next Post: Here is the definitive fix for Universal PDF XSS Vulnerability »
Read More
Related Reading:
Latest Posts:
- Animated Presentation on Sony PSN Hack
- ArcSight Tip #1 – arcsight managersetup notification test
- I’m a CISSP
- Operation:Payback or Social Vendetta is Here
- I got owned by Malware Destructor 2011 Virus
- New Downtime Cost Calculator by Storagepipe.com. What if ?
- Securing Your Network from Web Threats
- My Twitter Notes on 2010-07-25
- New NetWitness Visualize : Welcome To The Future!
- My Twitter Notes on 2010-07-18
February 17th, 2007 01:27
All the links gave 404 error..