[wp-trac] Re: [WordPress Trac] #2953: XSS Vulnerability in the
WordPress Trac
wp-trac at lists.automattic.com
Fri Jul 14 09:36:28 GMT 2006
#2953: XSS Vulnerability in the 'post_tilte' parameter in wp-admin/page-new.php
while submitting thought the "Create New page" option
------------------------------------------+---------------------------------
Reporter: NRNandini | Owner: westi
Type: defect | Status: assigned
Priority: high | Milestone: 2.0.4
Component: Administration | Version: 2.0.3
Severity: critical | Resolution:
Keywords: bg|has-patch bg|dev-feedback |
------------------------------------------+---------------------------------
Changes (by westi):
* milestone: => 2.0.4
* keywords: => bg|has-patch bg|dev-feedback
* status: new => assigned
* owner: anonymous => westi
Comment:
Attached patch fixes this two possibilities by using wp_specialchars.
Needs dev-feedback
--
Ticket URL: <http://trac.wordpress.org/ticket/2953>
WordPress Trac <http://wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list