[wp-polyglots] XSS problem with default-i18n (fixed but...)
WP.de Team
wordpress.de at gmail.com
Fri Oct 24 15:06:18 GMT 2008
Hi,
there is a security issue with the default-i18n theme.
see line 33 http://svn.automattic.com/wordpress-i18n/theme/trunk/sidebar.php
get_search_query was not filtered! We`ve pointed that to Automattic
and in the meanwhile (about 16:30 GMT) they`ve fixed it.
The problem is known for about one year or so, but the default-i18n
was completely forgotten.
So please inform your users.
Best regards
Olaf ( wordpress-deutschland.org)
---
Beitrag bei WPD:
http://blog.wordpress-deutschland.org/2008/10/24/sicherheitsproblem-mit-dem-default-theme.html
--
http://wordpress-deutschland.org
More information about the wp-polyglots
mailing list