WordPress < 2.8.3 Multiple Security Bypass Vulnerabilities
Medium Nessus Network Monitor Plugin ID 5120
SynopsisThe remote host is vulnerable to multiple attack vectors.
DescriptionThe remote host is running a version of WordPress earlier than 2.8.3. Such versions are reportedly affected by multiple security-bypass vulnerabilities in the 'wp-admin' administrative scripts. Authenticated attackers can exploit this issue to gain access to administrative functions.
SolutionUpgrade to WordPress 2.8.3, or later.