FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  372986
Date:      2014-11-21
Time:      11:06:59Z
Committer: madpilot

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
63347ee7-6841-11dc-82b6-02e0185f8d72wordpress -- remote sql injection vulnerability

Alexander Concha reports:

While testing WordPress, it has been discovered a SQL Injection vulnerability that allows an attacker to retrieve remotely any user credentials from a vulnerable site, this bug is caused because of early database escaping and the lack of validation in query string like parameters.


Discovery 2007-09-10
Entry 2007-09-21
wordpress
lt 2.2.3,1

de-wordpress
zh-wordpress
lt 2.2.3

wordpress-mu
lt 1.2.4,2

CVE-2007-4894
http://www.buayacorp.com/files/wordpress/wordpress-sql-injection-advisory.html
63347ee7-6841-11dc-82b6-02e0185f8d72wordpress -- remote sql injection vulnerability

Alexander Concha reports:

While testing WordPress, it has been discovered a SQL Injection vulnerability that allows an attacker to retrieve remotely any user credentials from a vulnerable site, this bug is caused because of early database escaping and the lack of validation in query string like parameters.


Discovery 2007-09-10
Entry 2007-09-21
wordpress
lt 2.2.3,1

de-wordpress
zh-wordpress
lt 2.2.3

wordpress-mu
lt 1.2.4,2

CVE-2007-4894
http://www.buayacorp.com/files/wordpress/wordpress-sql-injection-advisory.html