[wp-trac] Re: [WordPress Trac] #4691: Wordpress link-import.php
Cross-Site Scripting (XSS) Vulnerability
WordPress Trac
wp-trac at lists.automattic.com
Tue Jul 31 22:07:00 GMT 2007
#4691: Wordpress link-import.php Cross-Site Scripting (XSS) Vulnerability
----------------------------+-----------------------------------------------
Reporter: BenjaminFlesch | Owner: anonymous
Type: defect | Status: new
Priority: normal | Milestone: 2.3 (trunk)
Component: Security | Version: 2.2.1
Severity: normal | Resolution:
Keywords: |
----------------------------+-----------------------------------------------
Comment (by BenjaminFlesch):
ah sorry, its the cat_id . Cat_id -> XSS, but you need _wpnonces.
--
Ticket URL: <http://trac.wordpress.org/ticket/4691#comment:2>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list