FreeBSD : wordpress -- multiple vulnerabilities (b384cc5b-8d56-11e1-8d7b-003067b2972c)
Critical Nessus Plugin ID 58839
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionWordpress reports :
External code has been updated to non-vulnerable versions. In addition the following bugs have been fixed :
- Limited privilege escalation where a site administrator could deactivate network-wide plugins when running a WordPress network under particular circumstances.
- Cross-site scripting vulnerability when making URLs clickable.
- Cross-site scripting vulnerabilities in redirects after posting comments in older browsers, and when filtering URLs.
SolutionUpdate the affected package.