FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
a5bb7ea0-3e58-11e7-94a2-00e04c1ea73d	Wordpress -- multiple vulnerabilities WordPress versions 4.7.4 and earlier are affected by six security issues Insufficient redirect validation in the HTTP class. Improper handling of post meta data values in the XML-RPC API. Lack of capability checks for post meta data in the XML-RPC API. A Cross Site Request Forgery (CRSF) vulnerability was discovered in the filesystem credentials dialog. A cross-site scripting (XSS) vulnerability was discovered related to the Customizer. Discovery 2017-05-16 Entry 2017-05-21 wordpress fr-wordpress < 4.7.5,1 de-wordpress ja-wordpress ru-wordpress zh-wordpress-zh_CN zh-wordpress-zh_TW < 4.7.5 https://wordpress.org/news/2017/05/wordpress-4-7-5/

VuXML ID

Description

a5bb7ea0-3e58-11e7-94a2-00e04c1ea73d

Wordpress -- multiple vulnerabilities

WordPress versions 4.7.4 and earlier are affected by six security issues

Insufficient redirect validation in the HTTP class.

Improper handling of post meta data values in the XML-RPC API.

Lack of capability checks for post meta data in the XML-RPC API.

A Cross Site Request Forgery (CRSF) vulnerability was discovered in the filesystem credentials dialog.

A cross-site scripting (XSS) vulnerability was discovered related to the Customizer.

Discovery 2017-05-16
Entry 2017-05-21
wordpress
fr-wordpress

< 4.7.5,1

de-wordpress
ja-wordpress
ru-wordpress
zh-wordpress-zh_CN
zh-wordpress-zh_TW

< 4.7.5

https://wordpress.org/news/2017/05/wordpress-4-7-5/