Hi Kai, * Kai Hendry <[EMAIL PROTECTED]> [2007-11-22 23:31]: > http://trac.wordpress.org/ticket/5367 > > This attack requires read access to the database. So this "security" > bug is quite a non-event for me. > > Upstream are dealing with this, though I'll probably mark this bug as minor.
When I submitted the bug I already made a comment to this in the bug tracker. I agree with you here. See: http://security-tracker.debian.net/tracker/CVE-2007-6013 I will mark this as 'unimportant' if noone shouts out in the next days. Kind regards Nico -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
pgptyADZzIVAl.pgp
Description: PGP signature
