oss-sec mailing list archives

CVE Request -- WordPress v3.1.2

From: Jan Lieskovsky <jlieskov () redhat com>
Date: Mon, 02 May 2011 17:02:11 +0200


Hello Josh, Steve, vendors,

  WordPress upstream has released v3.1.2 addressing one security issue:
  [1] http://wordpress.org/news/

  More from [1]:
  "This release addresses a vulnerability that allowed Contributor-level users to improperly publish posts.
  The issue was discovered by a member of our security team, WordPress developer Andrew Nacin, with Benjamin Balter."

Could you allocate a CVE id for this?

Thank you & Regards, Jan.
--
Jan iankko Lieskovsky / Red Hat Security Response Team

Current thread:

CVE Request -- WordPress v3.1.2 Jan Lieskovsky (May 02)
- Re: CVE Request -- WordPress v3.1.2 Josh Bressers (May 02)