Detections
Analytics

FreeBSD : wordpress -- multiple issues (be38245e-44d9-11e8-a292-00e04c1ea73d)

high Nessus Plugin ID 109229

Language:

Synopsis

The remote FreeBSD host is missing one or more security-related updates.

Description

wordpress developers reports :

Don't treat localhost as same host by default.

Use safe redirects when redirecting the login page if SSL is forced.

Make sure the version string is correctly escaped for use in generator tags.

Solution

Update the affected packages.

See Also

http://www.nessus.org/u?1f28948e

http://www.nessus.org/u?6ce019bb

Plugin Details

Severity: High

ID: 109229

File Name: freebsd_pkg_be38245e44d911e8a29200e04c1ea73d.nasl

Version: 1.2

Type: local

Published: 4/23/2018

Updated: 11/10/2018

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:de-wordpress, p-cpe:/a:freebsd:freebsd:fr-wordpress, p-cpe:/a:freebsd:freebsd:ja-wordpress, p-cpe:/a:freebsd:freebsd:wordpress, p-cpe:/a:freebsd:freebsd:zh_cn-wordpress, p-cpe:/a:freebsd:freebsd:zh_tw-wordpress, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 4/20/2018

Vulnerability Publication Date: 4/3/2018