[wp-testers] WP 2.1.2 Bogus Self-XSS-Injection destroys Article /
Page
Tom Klingenberg
tklingenberg at lastflood.net
Tue Mar 20 08:20:56 GMT 2007
Wordpress Version 2.1.2
The following Text in Code Pane within the Editor has been changed from
<a href="http://example.com/?page_id=4">Linktext</a>
to
<!-- a href="http://example.com/?page_id=4">Linktext</a -->
and was then saved. Afterwards the whole Admin page ist part of your
editing Process... .
Maybe this problem is part of the current 2.1.3 RC as well, please check.
More information about the wp-testers
mailing list