| VID |
210170 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
According to its self-reported version number, the WordPress application running on the remote web server is prior to 3.1.1.
It is, therefore, affected by multiple vulnerabilities, including cross-site scripting (XSS) and cross-site request forgery (XSRF), and a denial of service (DoS) vulnerability.
* Platforms Affected:
WordPress prior to 3.1.1
Any operating system Any version |
| Recommendation |
Upgrade to the version (3.1.1 or later) fixed this vulnerability, available from the WordPress Download Web page at http://wordpress.org/download/ |
| Related URL |
CVE-2011-4956,CVE-2011-4957 (CVE) |
| Related URL |
73868,78357 (SecurityFocus) |
| Related URL |
(ISS) |
|
