Cross-site scripting (XSS) vulnerability in WordPress 2.5 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Debian Bug report logs -
#504771
wordpress can be subject of delayed attacks via cookies
Package:
wordpress;
Maintainer for wordpress is Craig Small <csmall@debianorg>; Source for wordpress is src:wordpress (PTS, buildd, popcon)
Reported by: Raphael Geissert <atomo64@gmailcom>
Date: Fri, 7 Nov 2008 02:42:04 UTC
S ...