Executive Summary



This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
Summary
Title wordpress security update
Informations
Name DSA-2190 First vendor Publication 2011-03-11
Vendor Debian Last vendor Modification 2011-03-11
Severity (Vendor) N/A Revision 1

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:S/C:P/I:N/A:N)
Cvss Base Score 4 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Low
Cvss Expoit Score 8 Authentication Requires single instance
Calculate full CVSS 2.0 Vectors scores

Detail

Two XSS bugs and one potential information disclosure issue were discovered in wordpress, a weblog manager. The Common Vulnerabilities and Exposures project identifies the following problems:

CVE-2011-0700

Input passed via the post title when performing a "Quick Edit" or "Bulk Edit" action and via the "post_status", "comment_status", and "ping_status" parameters is not properly sanitised before being used. Certain input passed via tags in the tags meta-box is not properly sanitised before being returned to the user.

CVE-2011-0701

Wordpress incorrectly enforces user access restrictions when accessing posts via the media uploader and can be exploited to disclose the contents of e.g. private or draft posts.

The oldstable distribution (lenny) is not affected by these problems.

For the stable distribution (squeeze), these problems have been fixed in version 3.0.5+dfsg-0+squeeze1

For the testing distribution (wheezy), and the unstable distribution (sid), these problems have been fixed in version 3.0.5+dfsg-1

We recommend that you upgrade your wordpress packages.

Original Source

Url : http://www.debian.org/security/2011/dsa-2190

CWE : Common Weakness Enumeration

% Id Name
50 % CWE-200 Information Exposure
50 % CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25)

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:12966
 
Oval ID: oval:org.mitre.oval:def:12966
Title: DSA-2190-1 wordpress -- several
Description: Two XSS bugs and one potential information disclosure issue were discovered in wordpress, a weblog manager. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2011-0700 Input passed via the post title when performing a "Quick Edit" or "Bulk Edit" action and via the "post_status", "comment_status", and "ping_status" parameters is not properly sanitised before being used. Certain input passed via tags in the tags meta-box is not properly sanitised before being returned to the user. CVE-2011-0701 Wordpress incorrectly enforces user access restrictions when accessing posts via the media uploader and can be exploited to disclose the contents of e.g. private or draft posts. The oldstable distribution is not affected by these problems.
Family: unix Class: patch
Reference(s): DSA-2190-1
CVE-2011-0700
CVE-2011-0701
 Version: 5
Platform(s): Debian GNU/Linux 6.0
Debian GNU/kFreeBSD 6.0
 Product(s): wordpress
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 226

OpenVAS Exploits

Date Description
2012-09-22 Name : Fedora Update for wordpress FEDORA-2012-13412
File : nvt/gb_fedora_2012_13412_wordpress_fc17.nasl
2012-09-22 Name : Fedora Update for wordpress FEDORA-2012-13488
File : nvt/gb_fedora_2012_13488_wordpress_fc16.nasl
2012-08-30 Name : Fedora Update for wordpress FEDORA-2012-6494
File : nvt/gb_fedora_2012_6494_wordpress_fc17.nasl
2012-05-14 Name : Fedora Update for wordpress FEDORA-2012-6511
File : nvt/gb_fedora_2012_6511_wordpress_fc15.nasl
2012-05-14 Name : Fedora Update for wordpress FEDORA-2012-6542
File : nvt/gb_fedora_2012_6542_wordpress_fc16.nasl
2011-05-12 Name : Debian Security Advisory DSA 2190-1 (wordpress)
File : nvt/deb_2190_1.nasl
2011-04-01 Name : Fedora Update for wordpress FEDORA-2011-3738
File : nvt/gb_fedora_2011_3738_wordpress_fc13.nasl
2011-04-01 Name : Fedora Update for wordpress FEDORA-2011-3746
File : nvt/gb_fedora_2011_3746_wordpress_fc14.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
72765 WordPress wp-admin/async-upload.php attachment_id Parameter Arbitrary Draft /...
72764 WordPress Tags meta-box XSS
72763 WordPress Quick / Bulk Edit Action Multiple Parameter XSS

Nessus® Vulnerability Scanner

Date Description
2011-03-30 Name : The remote Fedora host is missing a security update.
File : fedora_2011-3738.nasl - Type : ACT_GATHER_INFO
2011-03-30 Name : The remote Fedora host is missing a security update.
File : fedora_2011-3746.nasl - Type : ACT_GATHER_INFO
2011-03-22 Name : The remote Fedora host is missing a security update.
File : fedora_2011-3408.nasl - Type : ACT_GATHER_INFO
2011-03-14 Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2190.nasl - Type : ACT_GATHER_INFO
2011-02-10 Name : The remote web server contains a PHP application with multiple vulnerabilities.
File : wordpress_3_0_5.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
Date Informations
2014-02-17 11:29:58
  • Multiple Updates