Package: wordpress; Maintainer for wordpress is Craig Small <csmall@debian.org>; Source for wordpress is src:wordpress (PTS, buildd, popcon).
Reported by: Henri Salo <henri@nerv.fi>
Date: Fri, 25 Jan 2013 09:30:02 UTC
Severity: important
Tags: security
Found in versions wordpress/3.5+dfsg-1, wordpress/3.3.2+dfsg-1~squeeze1
Fixed in version 3.5.1+dfsg-1
Done: Raphael Hertzog <hertzog@debian.org>
Bug is archived. No further changes may be made.
View this report as an mbox folder, status mbox, maintainer mbox
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Changed Bug title to 'wordpress: pingback port scanning issue fixed in 3.5.1' from 'wordpress: multiple vulnerabilities fixed in 3.5.1'
Request was from Henri Salo <henri@nerv.fi>
to control@bugs.debian.org
.
(Fri, 25 Jan 2013 11:39:03 GMT) (full text, mbox, link).
Marked as found in versions wordpress/3.3.2+dfsg-1~squeeze1.
Request was from Henri Salo <henri@nerv.fi>
to control@bugs.debian.org
.
(Fri, 25 Jan 2013 11:39:04 GMT) (full text, mbox, link).
Severity set to 'critical' from 'important'
Request was from Henri Salo <henri@nerv.fi>
to control@bugs.debian.org
.
(Fri, 25 Jan 2013 11:39:04 GMT) (full text, mbox, link).
Added tag(s) security.
Request was from Henri Salo <henri@nerv.fi>
to control@bugs.debian.org
.
(Fri, 25 Jan 2013 11:39:05 GMT) (full text, mbox, link).
Bug 698916 cloned as bugs 698926, 698927
Request was from Henri Salo <henri@nerv.fi>
to control@bugs.debian.org
.
(Fri, 25 Jan 2013 11:57:03 GMT) (full text, mbox, link).
Changed Bug title to 'wordpress: XSS via shortcodes and post content fixed in 3.5.1' from 'wordpress: pingback port scanning issue fixed in 3.5.1'
Request was from Henri Salo <henri@nerv.fi>
to control@bugs.debian.org
.
(Fri, 25 Jan 2013 11:57:04 GMT) (full text, mbox, link).
Severity set to 'important' from 'critical'
Request was from Henri Salo <henri@nerv.fi>
to control@bugs.debian.org
.
(Fri, 25 Jan 2013 11:57:05 GMT) (full text, mbox, link).
Message #24 received at 698927@bugs.debian.org (full text, mbox, reply):
Changed Bug title to 'wordpress: CVE-2013-0236: XSS via shortcodes and post content fixed in 3.5.1' from 'wordpress: XSS via shortcodes and post content fixed in 3.5.1'
Request was from Henri Salo <henri@nerv.fi>
to control@bugs.debian.org
.
(Tue, 29 Jan 2013 09:21:07 GMT) (full text, mbox, link).
Reply sent
to Raphael Hertzog <hertzog@debian.org>
:
You have taken responsibility.
(Tue, 26 Feb 2013 14:54:11 GMT) (full text, mbox, link).
Message #31 received at 698927-done@bugs.debian.org (full text, mbox, reply):
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org
.
(Wed, 27 Mar 2013 07:26:28 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.