Описание
Before WordPress 4.9.5, the URL validator assumed URLs with the hostname localhost were on the same host as the WordPress server.
Before WordPress 4.9.5, the URL validator assumed URLs with the hostname localhost were on the same host as the WordPress server.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2018-10101
- https://github.com/WordPress/WordPress/commit/804363859602d4050d9a38a21f5a65d9aec18216
- https://codex.wordpress.org/Version_4.9.5
- https://core.trac.wordpress.org/changeset/42894
- https://wordpress.org/news/2018/04/wordpress-4-9-5-security-and-maintenance-release
- https://wpvulndb.com/vulnerabilities/9053
- https://www.debian.org/security/2018/dsa-4193
- http://www.securityfocus.com/bid/104350
- http://www.securitytracker.com/id/1040836
Связанные уязвимости
CVSS3: 6.1
ubuntu
почти 8 лет назад
Before WordPress 4.9.5, the URL validator assumed URLs with the hostname localhost were on the same host as the WordPress server.
CVSS3: 6.1
nvd
почти 8 лет назад
Before WordPress 4.9.5, the URL validator assumed URLs with the hostname localhost were on the same host as the WordPress server.
CVSS3: 6.1
debian
почти 8 лет назад
Before WordPress 4.9.5, the URL validator assumed URLs with the hostna ...