Made title of some vulns smaller
This commit is contained in:
ethicalhack3r
@@ -1846,7 +1846,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -1948,7 +1948,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -1956,7 +1956,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<osvdb>104691</osvdb>
|
||||
<cve>2010-5297</cve>
|
||||
@@ -2028,7 +2028,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -2036,7 +2036,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -2092,7 +2092,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -2100,7 +2100,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -2170,7 +2170,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -2178,7 +2178,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -2234,7 +2234,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -2242,7 +2242,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -2305,7 +2305,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -2313,7 +2313,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -2369,7 +2369,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -2377,7 +2377,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -2440,7 +2440,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -2448,7 +2448,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -2504,7 +2504,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -2512,7 +2512,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -2575,7 +2575,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -2583,7 +2583,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -2639,7 +2639,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -2647,7 +2647,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -2710,7 +2710,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -2718,7 +2718,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -2781,7 +2781,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -2789,7 +2789,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -2852,7 +2852,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -2860,7 +2860,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -2916,7 +2916,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -2924,7 +2924,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -2980,7 +2980,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -2988,7 +2988,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -3051,7 +3051,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -3059,7 +3059,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -3129,7 +3129,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -3137,7 +3137,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -3193,7 +3193,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -3201,7 +3201,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -3264,7 +3264,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -3272,7 +3272,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -3336,7 +3336,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -3344,7 +3344,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -3400,7 +3400,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -3408,7 +3408,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -3464,7 +3464,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -3472,7 +3472,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -3535,7 +3535,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -3543,7 +3543,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -3592,7 +3592,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -3600,7 +3600,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -3656,7 +3656,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -3664,7 +3664,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -3720,7 +3720,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -3728,7 +3728,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -3784,7 +3784,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -3792,7 +3792,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -3862,7 +3862,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -3870,7 +3870,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -3933,7 +3933,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -3941,7 +3941,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -4012,7 +4012,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -4020,7 +4020,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -4087,7 +4087,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -4095,7 +4095,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -4144,7 +4144,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -4152,7 +4152,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -4208,7 +4208,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -4216,7 +4216,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -4272,7 +4272,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -4280,7 +4280,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -4329,7 +4329,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -4337,7 +4337,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -4386,7 +4386,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -4394,7 +4394,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -4450,7 +4450,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -4458,7 +4458,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -4521,7 +4521,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -4529,7 +4529,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -4592,7 +4592,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -4600,7 +4600,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -4663,7 +4663,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -4671,7 +4671,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -4734,7 +4734,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -4742,7 +4742,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -4812,7 +4812,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -4820,7 +4820,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -4884,7 +4884,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -4892,7 +4892,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
@@ -4956,7 +4956,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>wp-includes/capabilities.php when a Multisite configuration is used, does not require the Super Admin role for the delete_users capability, which allows remote authenticated administrators to bypass intended access restrictions via a delete action.</title>
|
||||
<title>wp-includes/capabilities.php Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5296</cve>
|
||||
</references>
|
||||
@@ -4964,7 +4964,7 @@
|
||||
<fixed_in>3.0.2</fixed_in>
|
||||
</vulnerability>
|
||||
<vulnerability>
|
||||
<title>When a Multisite installation is used, permanently retains the "site administrators can add users" option once changed, which might allow remote authenticated administrators to bypass intended access restrictions in opportunistic circumstances via an add action after a temporary change.</title>
|
||||
<title>Remote Authenticated Administrator Bypass Intended Access Restrictions via a Delete Action</title>
|
||||
<references>
|
||||
<cve>2010-5297</cve>
|
||||
</references>
|
||||
|
||||
Reference in New Issue
Block a user