|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Sql Injection and Path Disclosoure Wordpress v2.0.5
From: Paul Robertson (compuwar
gmail.com)
Date: Thu Sep 07 2006 - 10:30:45 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On 6 Sep 2006 17:26:18 -0000, vannovaxgmail.com <vannovaxgmail.com> wrote:
> Version Afected: v2.0.5 - v2.0.2
>
>
> For Version v2.0.2
>
>
> index.php?paged=-25633&header.php?=-id
Isn't this the exact same bug reported on Bugtraq in early July by
zero in 2.0.3?
>
>
> For Version v2.0.5
>
> index.php?paged=/archive/-1-5-2-Create%20Table
>
The Wordpress folks tell me there isn't a version 2.0.5, 2.0.4 is the
latest release and the subversion code isn't numbered that way. Is it
possible the OP got the version string wrong?
Thanks,
Paul
--
fora.compuwar.net
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]