Full Disclosure mailing list archives
Re: WordPress 4.2 stored XSS
From: Hanno Böck <hanno () hboeck de>
Date: Mon, 27 Apr 2015 16:55:35 +0200
As there is still no fix from upstream I created a quick'n'dirty fix for it: https://gist.github.com/hannob/a07f7b7e196c75c4c1a8 https://files.hboeck.de/wordpress-4.2-emergency-fix-xss.diff It certainly doesn't comply with any coding style or anything :-) but it should protect you for now. -- Hanno Böck http://hboeck.de/ mail/jabber: hanno () hboeck de GPG: BBB51E42
Attachment:
_bin
Description: OpenPGP digital signature
_______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
Current thread:
- WordPress 4.2 stored XSS Jouko Pynnonen (Apr 26)
- Re: WordPress 4.2 stored XSS Scott Arciszewski (Apr 26)
- Re: WordPress 4.2 stored XSS Hanno Böck (Apr 27)
- Re: WordPress 4.2 stored XSS Winni Neessen (Apr 27)
- Re: WordPress 4.2 stored XSS C0r3dump3d (Apr 28)
- Re: WordPress 4.2 stored XSS Winni Neessen (Apr 27)
- Re: WordPress 4.2 stored XSS Anthony Ferrara (Apr 27)
- Re: WordPress 4.2 stored XSS Fyodor (Apr 27)
- Re: WordPress 4.2 stored XSS Scott Arciszewski (Apr 27)
- Re: WordPress 4.2 stored XSS Ryan Dewhurst (Apr 27)
- Re: WordPress 4.2 stored XSS Scott Arciszewski (Apr 27)