Debian Local Security Checks : Debian Security Advisory DSA 3815-1 (wordpress

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.703815

Categoría: Debian Local Security Checks

Título: Debian Security Advisory DSA 3815-1 (wordpress - security update)

Resumen: Several vulnerabilities were discovered in wordpress, a web blogging;tool. They would allow remote attackers to delete unintended files,;mount Cross-Site Scripting attacks, or bypass redirect URL validation;mechanisms.

Descripción: Summary:
Several vulnerabilities were discovered in wordpress, a web blogging
tool. They would allow remote attackers to delete unintended files,
mount Cross-Site Scripting attacks, or bypass redirect URL validation
mechanisms.

Affected Software/OS:
wordpress on Debian Linux

Solution:
For the stable distribution (jessie), these problems have been fixed in
version 4.1+dfsg-1+deb8u13.

For the upcoming stable (stretch) and unstable (sid) distributions,
these problems have been fixed in version 4.7.3+dfsg-1.

We recommend that you upgrade your wordpress packages.

CVSS Score:
5.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:N

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2017-6814
BugTraq ID: 96601
http://www.securityfocus.com/bid/96601
Debian Security Information: DSA-3815 (Google Search)
http://www.debian.org/security/2017/dsa-3815
http://openwall.com/lists/oss-security/2017/03/06/8
https://codex.wordpress.org/Version_4.7.3
https://github.com/WordPress/WordPress/commit/28f838ca3ee205b6f39cd2bf23eb4e5f52796bd7
https://sumofpwn.nl/advisory/2016/wordpress_audio_playlist_functionality_is_affected_by_cross_site_scripting.html
https://wordpress.org/news/2017/03/wordpress-4-7-3-security-and-maintenance-release/
https://wpvulndb.com/vulnerabilities/8765
http://www.securitytracker.com/id/1037959
Common Vulnerability Exposure (CVE) ID: CVE-2017-6815
BugTraq ID: 96600
http://www.securityfocus.com/bid/96600
https://github.com/WordPress/WordPress/commit/288cd469396cfe7055972b457eb589cea51ce40e
https://wpvulndb.com/vulnerabilities/8766
Common Vulnerability Exposure (CVE) ID: CVE-2017-6816
BugTraq ID: 96598
http://www.securityfocus.com/bid/96598
https://github.com/WordPress/WordPress/commit/4d80f8b3e1b00a3edcee0774dc9c2f4c78f9e663
https://wpvulndb.com/vulnerabilities/8767
Common Vulnerability Exposure (CVE) ID: CVE-2017-6817
https://github.com/WordPress/WordPress/commit/419c8d97ce8df7d5004ee0b566bc5e095f0a6ca8
https://wpvulndb.com/vulnerabilities/8768

Copyright Copyright (C) 2017 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.703815
Categoría:	Debian Local Security Checks
Título:	Debian Security Advisory DSA 3815-1 (wordpress - security update)
Resumen:	Several vulnerabilities were discovered in wordpress, a web blogging;tool. They would allow remote attackers to delete unintended files,;mount Cross-Site Scripting attacks, or bypass redirect URL validation;mechanisms.
Descripción:	Summary: Several vulnerabilities were discovered in wordpress, a web blogging tool. They would allow remote attackers to delete unintended files, mount Cross-Site Scripting attacks, or bypass redirect URL validation mechanisms. Affected Software/OS: wordpress on Debian Linux Solution: For the stable distribution (jessie), these problems have been fixed in version 4.1+dfsg-1+deb8u13. For the upcoming stable (stretch) and unstable (sid) distributions, these problems have been fixed in version 4.7.3+dfsg-1. We recommend that you upgrade your wordpress packages. CVSS Score: 5.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-6814 BugTraq ID: 96601 http://www.securityfocus.com/bid/96601 Debian Security Information: DSA-3815 (Google Search) http://www.debian.org/security/2017/dsa-3815 http://openwall.com/lists/oss-security/2017/03/06/8 https://codex.wordpress.org/Version_4.7.3 https://github.com/WordPress/WordPress/commit/28f838ca3ee205b6f39cd2bf23eb4e5f52796bd7 https://sumofpwn.nl/advisory/2016/wordpress_audio_playlist_functionality_is_affected_by_cross_site_scripting.html https://wordpress.org/news/2017/03/wordpress-4-7-3-security-and-maintenance-release/ https://wpvulndb.com/vulnerabilities/8765 http://www.securitytracker.com/id/1037959 Common Vulnerability Exposure (CVE) ID: CVE-2017-6815 BugTraq ID: 96600 http://www.securityfocus.com/bid/96600 https://github.com/WordPress/WordPress/commit/288cd469396cfe7055972b457eb589cea51ce40e https://wpvulndb.com/vulnerabilities/8766 Common Vulnerability Exposure (CVE) ID: CVE-2017-6816 BugTraq ID: 96598 http://www.securityfocus.com/bid/96598 https://github.com/WordPress/WordPress/commit/4d80f8b3e1b00a3edcee0774dc9c2f4c78f9e663 https://wpvulndb.com/vulnerabilities/8767 Common Vulnerability Exposure (CVE) ID: CVE-2017-6817 https://github.com/WordPress/WordPress/commit/419c8d97ce8df7d5004ee0b566bc5e095f0a6ca8 https://wpvulndb.com/vulnerabilities/8768
Copyright	Copyright (C) 2017 Greenbone Networks GmbH