Описание
Before WordPress 4.9.5, the redirection URL for the login page was not validated or sanitized if forced to use HTTPS.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| wordpress | fixed | 4.9.5+dfsg1-1 | package |
Примечания
https://core.trac.wordpress.org/changeset/42892
https://github.com/WordPress/WordPress/commit/14bc2c0a6fde0da04b47130707e01df850eedc7e
Связанные уязвимости
CVSS3: 6.1
ubuntu
больше 7 лет назад
Before WordPress 4.9.5, the redirection URL for the login page was not validated or sanitized if forced to use HTTPS.
CVSS3: 6.1
nvd
больше 7 лет назад
Before WordPress 4.9.5, the redirection URL for the login page was not validated or sanitized if forced to use HTTPS.
CVSS3: 6.1
github
около 3 лет назад
Before WordPress 4.9.5, the redirection URL for the login page was not validated or sanitized if forced to use HTTPS.