[wp-trac] [WordPress Trac] #4606: Redirection Vulnerability in
wp-pass.php
WordPress Trac
wp-trac at lists.automattic.com
Tue Jul 10 19:47:19 GMT 2007
#4606: Redirection Vulnerability in wp-pass.php
-----------------------+----------------------------------------------------
Reporter: snakefoot | Owner: anonymous
Type: defect | Status: new
Priority: high | Milestone: 2.2.2
Component: Security | Version: 2.0.10
Severity: major | Keywords:
-----------------------+----------------------------------------------------
It is possible to create an url to a trusted Wordpress blog, that
redirects to an evil site:
{{{
http://vulnerable.blog/wordpress/wp-
pass.php?_wp_http_referer=http://www.evilsite.com
}}}
http://blogsecurity.net/wordpress/news-050707/
--
Ticket URL: <http://trac.wordpress.org/ticket/4606>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list