[wp-trac] Re: [WordPress Trac] #4012: XSS on page-new.php
WordPress Trac
wp-trac at lists.automattic.com
Thu Mar 22 00:26:23 GMT 2007
#4012: XSS on page-new.php
-----------------------------+----------------------------------------------
Reporter: xknown | Owner: anonymous
Type: defect | Status: new
Priority: highest omg bbq | Milestone: 2.1.3
Component: Security | Version: 2.1.2
Severity: normal | Resolution:
Keywords: |
-----------------------------+----------------------------------------------
Comment (by xknown):
The given PoC is:
[http://wp/wp-admin/page-new.php?saved="><script>alert(123)</script>]
PS. The patch is only for the trunk
--
Ticket URL: <http://trac.wordpress.org/ticket/4012#comment:1>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list