Update wp_vulns.xml
This commit is contained in:
Peter
@@ -94,7 +94,7 @@
|
|||||||
<fixed_in>3.5.2</fixed_in>
|
<fixed_in>3.5.2</fixed_in>
|
||||||
</vulnerability>
|
</vulnerability>
|
||||||
<vulnerability>
|
<vulnerability>
|
||||||
<title>WordPress 3.4 - 3.5.1 DoS in class-phpass.php</title>
|
<title>WordPress 3.4-3.5.1 DoS in class-phpass.php</title>
|
||||||
<references>
|
<references>
|
||||||
<url>http://seclists.org/fulldisclosure/2013/Jun/65</url>
|
<url>http://seclists.org/fulldisclosure/2013/Jun/65</url>
|
||||||
<secunia>53676</secunia>
|
<secunia>53676</secunia>
|
||||||
@@ -112,6 +112,7 @@
|
|||||||
<osvdb>94790</osvdb>
|
<osvdb>94790</osvdb>
|
||||||
</references>
|
</references>
|
||||||
<type>XSS</type>
|
<type>XSS</type>
|
||||||
|
<fixed_in>3.5.2</fixed_in>
|
||||||
</vulnerability>
|
</vulnerability>
|
||||||
<vulnerability>
|
<vulnerability>
|
||||||
<title>WordPress TinyMCE Plugin Flash Applet Unspecified Spoofing Weakness</title>
|
<title>WordPress TinyMCE Plugin Flash Applet Unspecified Spoofing Weakness</title>
|
||||||
@@ -119,6 +120,7 @@
|
|||||||
<osvdb>94787</osvdb>
|
<osvdb>94787</osvdb>
|
||||||
</references>
|
</references>
|
||||||
<type>UNKNOWN</type>
|
<type>UNKNOWN</type>
|
||||||
|
<fixed_in>3.5.2</fixed_in>
|
||||||
</vulnerability>
|
</vulnerability>
|
||||||
<vulnerability>
|
<vulnerability>
|
||||||
<title>WordPress File Upload Unspecified Path Disclosure</title>
|
<title>WordPress File Upload Unspecified Path Disclosure</title>
|
||||||
@@ -126,27 +128,31 @@
|
|||||||
<osvdb>94788</osvdb>
|
<osvdb>94788</osvdb>
|
||||||
</references>
|
</references>
|
||||||
<type>UNKNOWN</type>
|
<type>UNKNOWN</type>
|
||||||
|
<fixed_in>3.5.2</fixed_in>
|
||||||
</vulnerability>
|
</vulnerability>
|
||||||
<vulnerability>
|
<vulnerability>
|
||||||
<title>WordPress oEmbed Unspecified XML External Entity (XXE) Arbitrary File Disclosure</title>
|
<title>WordPress 3.5-3.5.1 oEmbed Unspecified XML External Entity (XXE) Arbitrary File Disclosure</title>
|
||||||
<references>
|
<references>
|
||||||
<osvdb>94789</osvdb>
|
<osvdb>94789</osvdb>
|
||||||
</references>
|
</references>
|
||||||
<type>XXE</type>
|
<type>XXE</type>
|
||||||
|
<fixed_in>3.5.2</fixed_in>
|
||||||
</vulnerability>
|
</vulnerability>
|
||||||
<vulnerability>
|
<vulnerability>
|
||||||
<title>WordPress Multiple Role Remote Privilege Escalation</title>
|
<title>WordPress 3.5-3.5.1 Multiple Role Remote Privilege Escalation</title>
|
||||||
<references>
|
<references>
|
||||||
<osvdb>94783</osvdb>
|
<osvdb>94783</osvdb>
|
||||||
</references>
|
</references>
|
||||||
<type>UNKNOWN</type>
|
<type>UNKNOWN</type>
|
||||||
|
<fixed_in>3.5.2</fixed_in>
|
||||||
</vulnerability>
|
</vulnerability>
|
||||||
<vulnerability>
|
<vulnerability>
|
||||||
<title>WordPress HTTP API Unspecified Server Side Request Forgery (SSRF)</title>
|
<title>WordPress 3.5-3.5.1 HTTP API Unspecified Server Side Request Forgery (SSRF)</title>
|
||||||
<references>
|
<references>
|
||||||
<osvdb>94784</osvdb>
|
<osvdb>94784</osvdb>
|
||||||
</references>
|
</references>
|
||||||
<type>SSRF</type>
|
<type>SSRF</type>
|
||||||
|
<fixed_in>3.5.2</fixed_in>
|
||||||
</vulnerability>
|
</vulnerability>
|
||||||
</wordpress>
|
</wordpress>
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user