Ticket #3781 (closed defect (bug): fixed)

Opened 5 years ago

Last modified 5 years ago

Vulnerability in nonce AYS

Reported by: PsychoGun Owned by: anonymous
Priority: highest omg bbq Milestone: 2.0.9
Component: Security Version: 2.0.7
Severity: blocker Keywords:
Cc:

Description

Hi,

I found a vulnerability in wordpress, i made an exploit and i transmitted everything to these security websites: mil0rwm, securityfocus, secunia ect E-mail me if you want more specifications.

Change History

comment:1   foolswisdom5 years ago

  • Milestone changed from 2.3 to 2.1.1

comment:2   foolswisdom5 years ago

Please email the details to security@… .

comment:3   foolswisdom5 years ago

LOL, that should be secuirty@… .

comment:4   foolswisdom5 years ago

Alright, I give up, going back to bed: security@…

comment:5   Viper007Bond5 years ago

  • Component changed from Administration to Security

comment:6   Nazgul5 years ago

  • Status changed from new to closed
  • Resolution set to fixed

Fixed in [4876]

comment:7   ryan5 years ago

  • Version set to 2.0.7
  • Milestone changed from 2.1.1 to 2.0.9

comment:8   foolswisdom5 years ago

  • Severity changed from normal to blocker

Fixed on all branches
2.0.9 [4877]
2.1.1 [4876]
trunk [4875]

comment:9   ryan5 years ago

  • Summary changed from Vulnerability in wordpress to Vulnerability in nonce AYS

comment:11   ryan5 years ago

Fixed for both 2.0.9 and 2.1.1.

Note: See TracTickets for help on using tickets.