FreeBSD : wordpress -- multiple vulnerabilities (b384cc5b-8d56-11e1-8d7b-003067b2972c)

This script is Copyright (C) 2012-2013 Tenable Network Security, Inc.

Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

Wordpress reports :

External code has been updated to non-vulnerable versions. In addition
the following bugs have been fixed :

- Limited privilege escalation where a site administrator could
deactivate network-wide plugins when running a WordPress network under
particular circumstances.

- Cross-site scripting vulnerability when making URLs clickable.

- Cross-site scripting vulnerabilities in redirects after posting
comments in older browsers, and when filtering URLs.

See also :

Solution :

Update the affected package.

Risk factor :

Critical / CVSS Base Score : 10.0

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 58839 ()

Bugtraq ID:

CVE ID: CVE-2012-2399

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now