Описание
Before WordPress 4.9.5, the URL validator assumed URLs with the hostname localhost were on the same host as the WordPress server.
Before WordPress 4.9.5, the URL validator assumed URLs with the hostname localhost were on the same host as the WordPress server.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2018-10101
- https://github.com/WordPress/WordPress/commit/804363859602d4050d9a38a21f5a65d9aec18216
- https://codex.wordpress.org/Version_4.9.5
- https://core.trac.wordpress.org/changeset/42894
- https://wordpress.org/news/2018/04/wordpress-4-9-5-security-and-maintenance-release
- https://wpvulndb.com/vulnerabilities/9053
- https://www.debian.org/security/2018/dsa-4193
- http://www.securityfocus.com/bid/104350
- http://www.securitytracker.com/id/1040836
Связанные уязвимости
CVSS3: 6.1
ubuntu
больше 7 лет назад
Before WordPress 4.9.5, the URL validator assumed URLs with the hostname localhost were on the same host as the WordPress server.
CVSS3: 6.1
nvd
больше 7 лет назад
Before WordPress 4.9.5, the URL validator assumed URLs with the hostname localhost were on the same host as the WordPress server.
CVSS3: 6.1
debian
больше 7 лет назад
Before WordPress 4.9.5, the URL validator assumed URLs with the hostna ...