[wp-hackers] XSS Vulnerability reported by a french geek

Gali galeenet at gmail.com
Tue May 29 15:46:49 GMT 2007


http://ar3av.free.fr/faillewordpress.php
( 27 / 05 / 2007 )

versions : 2.2 and previous versions.

A site could lead a blog administrator to post a malicious javascript
in comments, resulting in an open door to XSS.


More information about the wp-hackers mailing list