Full Disclosure mailing list archives
Re: XSS vulnerability in swfupload in WordPress
From: "Robert Kim SuperHydroPhobic!" <evdo.hsdpa () gmail com>
Date: Sun, 11 Nov 2012 21:51:19 +0900
This one is a big deal. Is this on the wordpress website? It effects all my sites as well... i have 27! On Sat, Nov 10, 2012 at 6:52 AM, MustLive < > wrote:
Hello list! I will draw your attention to XSS vulnerability in swfupload in WordPress. In April there was announced Cross-Site Scripting vulnerability in swfupload.swf in WordPress (CVE-2012-3414). It was fixed in WordPress 3.3.2.
-- Robert Q Kim SuperHydroPhobic Coating Chemical Manufacturer http://www.youtube.com/watch?v=x8ZcOc1RcnU 2611 S Coast Highway San Diego, CA 92007 310 598 1606
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- XSS vulnerability in swfupload in WordPress MustLive (Nov 09)
- Re: XSS vulnerability in swfupload in WordPress Robert Kim SuperHydroPhobic! (Nov 11)