Michael S Gilbert ha scritto: >> [1]http://wordpress.org/development/2007/04/wordpress-213-and-2010/ > > i still don't see CVE-2007-4483 claimed fixed there. so the
- "These releases include fixes for several publicly known minor XSS issues" - CVE-2007-4483 claimed wordpress 2.1.3 as fixed version - PoC doesn't work in 2.0.10 We haven't any code references for this XSS issue, so with the above considerations I think is reasonable to deduce it was fixed in 2.0.10. > so you will need to test > the proof-of-concept when using that theme. Yes, I tested the proof-of-concept with the classic theme. Cheers, Giuseppe.
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Secure-testing-team mailing list [email protected] http://lists.alioth.debian.org/mailman/listinfo/secure-testing-team
