[wp-trac] [WordPress Trac] #21917: Wordpress 3.4.2 - Multiple XSS Vulnerability
WordPress Trac
wp-trac at lists.automattic.com
Tue Sep 18 04:46:07 UTC 2012
#21917: Wordpress 3.4.2 - Multiple XSS Vulnerability
--------------------------+----------------------
Reporter: nuxbie | Owner:
Type: defect (bug) | Status: closed
Priority: normal | Milestone:
Component: General | Version: 3.4.2
Severity: normal | Resolution: invalid
Keywords: |
--------------------------+----------------------
Changes (by nacin):
* status: new => closed
* resolution: => invalid
* milestone: Awaiting Review =>
Comment:
Please do not report "security issues" publicly.
http://codex.wordpress.org/Security_FAQ#Where_do_I_report_security_issues.3F
Also , this isn't a security issue.
http://codex.wordpress.org/Security_FAQ#Why_are_some_users_allowed_to_post_unfiltered_HTML.3F
If you posted this publicly anywhere else (exploit sites, disclosure
mailing lists) please rescind it as invalid.
We encourage '''responsible, private disclosure''' of security issues in
part so invalid reports do not spread.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/21917#comment:1>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list