[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] 2 vanilla XSS on Wordpress ‘wp-register.php’

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] 2 vanilla XSS on Wordpress ‘wp-register.php’
From: "Adrian P" <unknown.pentester@xxxxxxxxx>
Date: Sat, 22 Sep 2007 01:07:25 +0100

There are two vanilla XSS on 'wp-register.php'. Only versions <=2.0.1
appear to be affected.

More info can be found on GNUCITIZEN's BlogSecurity:

http://blogsecurity.net/wordpress/2-vanilla-xss-on-wordpress-wp-registerphp/


Regards,

-- 
pagvac
gnucitizen.org, ikwt.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: Re: [Full-disclosure] 0day: PDF pwns Windows
Next by Date: Re: [Full-disclosure] 0day: PDF pwns Windows
Previous by thread: [Full-disclosure] [ MDKSA-2007:187 ] - Updated PHP packages fix numerous vulnerabilities
Next by thread: [Full-disclosure] HITBSecConf2007 - Malaysia Materials & Photos are up !
Index(es):
- Date
- Thread