[wp-trac] Re: [WordPress Trac] #4322: Sql injection blind fishing exploit

WordPress Trac wp-trac at lists.automattic.com
Sun Jun 10 21:14:44 GMT 2007


#4322: Sql injection blind fishing exploit
-----------------------------+----------------------------------------------
 Reporter:  DrHallows        |        Owner:  anonymous
     Type:  defect           |       Status:  closed   
 Priority:  highest omg bbq  |    Milestone:  2.0.11   
Component:  Security         |      Version:  2.1.3    
 Severity:  critical         |   Resolution:  fixed    
 Keywords:  security, bug    |  
-----------------------------+----------------------------------------------
Changes (by westi):

  * status:  reopened => closed
  * resolution:  => fixed

Comment:

 Replying to [comment:2 hvdkamer]:
 > According to [http://wordpress.org/download/release-archive/ this page]:
 >
 > "''None of these are safe to use, except the latest in the 2.0 or 2.1
 series, which are both actively maintained.''"
 >
 > However version 2.1.3 is still not patched for this bug?

 2.1.3 will not be patched.

 The only security supported versions are 2.0.x and 2.2.x

 This fix is in 2.2.1 which has just gone RC.

-- 
Ticket URL: <http://trac.wordpress.org/ticket/4322#comment:3>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software


More information about the wp-trac mailing list