admin
05-31-2005, 01:54 AM
WordPress
May 27, 2005
http://wordpress.org
http://secunia.com/advisories/15517/
http://wordpress.org/development/2005/05/security-update/
Description:
A vulnerability has been reported in WordPress, which can be exploited by malicious people to conduct SQL injection attacks.
Input passed to the "cat_ID" parameter isn't properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.
The vulnerability has been reported in version 1.5. Other versions may also be affected.
Solution:
Update to version 1.5.1.2.
http://wordpress.org/download/
Provided and/or discovered by:
Reported by vendor.
Original Advisory:
http://wordpress.org/development/2005/05/security-update/
May 27, 2005
http://wordpress.org
http://secunia.com/advisories/15517/
http://wordpress.org/development/2005/05/security-update/
Description:
A vulnerability has been reported in WordPress, which can be exploited by malicious people to conduct SQL injection attacks.
Input passed to the "cat_ID" parameter isn't properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.
The vulnerability has been reported in version 1.5. Other versions may also be affected.
Solution:
Update to version 1.5.1.2.
http://wordpress.org/download/
Provided and/or discovered by:
Reported by vendor.
Original Advisory:
http://wordpress.org/development/2005/05/security-update/