[wp-trac] [WordPress Trac] #28610: Persistent XSS and CSRF on wordpress 3.9.1
WordPress Trac
noreply at wordpress.org
Sat Jun 21 17:26:48 UTC 2014
#28610: Persistent XSS and CSRF on wordpress 3.9.1
---------------------------+----------------------
Reporter: avinash_thapa | Owner:
Type: defect (bug) | Status: closed
Priority: normal | Milestone:
Component: General | Version: 3.9.1
Severity: normal | Resolution: invalid
Keywords: | Focuses:
---------------------------+----------------------
Comment (by SergeyBiryukov):
http://codex.wordpress.org/FAQ_Security#Why_are_some_users_allowed_to_post_unfiltered_HTML.3F
--
Ticket URL: <https://core.trac.wordpress.org/ticket/28610#comment:2>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list