CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2013/01/28 14:14:09
Modified files:
www/wordpress : Makefile distinfo
www/wordpress/pkg: PLIST
Log message:
security and bugfix update to WordPress 3.5.1:
- server-side request forgery vulnerability and remote port scanning
using pingbacks
(http://lab.onsec.ru/2013/01/wordpress-xmlrpc-pingback-additional.html)
- cross-site scripting via shortcodes and post content
- cross-site scripting vulnerability in the external library Plupload
ok merdely@
