[Secure-testing-commits] r9896 - data/CVE

white at alioth.debian.org white at alioth.debian.org
Mon Sep 29 09:43:29 UTC 2008


Author: white
Date: 2008-09-29 09:43:26 +0000 (Mon, 29 Sep 2008)
New Revision: 9896

Modified:
   data/CVE/list
Log:
Add wordpress bugreport

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-09-29 09:40:22 UTC (rev 9895)
+++ data/CVE/list	2008-09-29 09:43:26 UTC (rev 9896)
@@ -1,3 +1,6 @@
+CVE-2008-XXXX [possible script injection via /etc/wordpress/wp-config.php]
+	- wordpress <unfixed> (bug #500295; unimportant)
+	NOTE: bigger problems, if attacker has access to /etch/wordpress/*
 CVE-2008-XXXX [Unexpected behavior of url.redirect / url.rewrite config options]
 	- lighttpd 1.4.19-5 (low)
 	NOTE: http://www.lighttpd.net/security/lighttpd_sa_2008_05.txt




More information about the Secure-testing-commits mailing list