[Secure-testing-commits] r23632 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Thu Sep 12 05:13:49 UTC 2013
Author: carnil
Date: 2013-09-12 05:13:48 +0000 (Thu, 12 Sep 2013)
New Revision: 23632
Modified:
data/CVE/list
Log:
Add three CVEs for wordpress
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-09-12 05:08:40 UTC (rev 23631)
+++ data/CVE/list 2013-09-12 05:13:48 UTC (rev 23632)
@@ -3044,12 +3044,21 @@
RESERVED
CVE-2013-4341
RESERVED
-CVE-2013-4340
+CVE-2013-4340 [Privilege Escalation]
RESERVED
-CVE-2013-4339
+ - wordpress <unfixed>
+ NOTE: http://core.trac.wordpress.org/changeset/25321
+ TODO: check
+CVE-2013-4339 [Open Redirect / Insufficient Input Validation]
RESERVED
-CVE-2013-4338
+ - wordpress <unfixed>
+ NOTE: http://core.trac.wordpress.org/changeset/25323 and http://core.trac.wordpress.org/changeset/25324
+ TODO: check
+CVE-2013-4338 [Unsafe PHP unserialization]
RESERVED
+ - wordpress <unfixed>
+ NOTE: http://core.trac.wordpress.org/changeset/25325
+ TODO: check
CVE-2013-4337
RESERVED
CVE-2013-4336
More information about the Secure-testing-commits
mailing list