FreeBSD : wordpress -- header rss feed script insertion vulnerability (622bc638-be27-11dd-a578-0030843d3802)
Medium Nessus Plugin ID 34978
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionSecunia reports :
Input passed via the HTTP 'Host' header is not properly sanitised before being used. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site if malicious data is viewed.
SolutionUpdate the affected packages.