Detections
Analytics

Debian DSA-1285-1 : wordpress - several vulnerabilities

medium Nessus Plugin ID 25152

Synopsis

The remote Debian host is missing a security-related update.

Description

- CVE-2007-1622 Cross-site scripting (XSS) vulnerability in wp-admin/vars.php in WordPress before 2.0.10 RC2, and before 2.1.3 RC2 in the 2.1 series, allows remote authenticated users with theme privileges to inject arbitrary web script or HTML via the PATH_INFO in the administration interface, related to loose regular expression processing of PHP_SELF.

 - CVE-2007-1893 WordPress 2.1.2, and probably earlier, allows remote authenticated users with the contributor role to bypass intended access restrictions and invoke the publish_posts functionality, which can be used to'publish a previously saved post.'

 - CVE-2007-1894 Cross-site scripting (XSS) vulnerability in wp-includes/general-template.php in WordPress before 20070309 allows remote attackers to inject arbitrary web script or HTML via the year parameter in the wp_title function.

 - CVE-2007-1897 SQL injection vulnerability in xmlrpc.php in WordPress 2.1.2, and probably earlier, allows remote authenticated users to execute arbitrary SQL commands via a string parameter value in an XML RPC mt.setPostCategories method call, related to the post_id variable.

Solution

Upgrade the wordpress package.

For the stable distribution (etch) these issues have been fixed in version 2.0.10-1.

For the testing and unstable distributions (lenny and sid, respectively), these issues have been fixed in version 2.1.3-1.

See Also

https://security-tracker.debian.org/tracker/CVE-2007-1622

https://security-tracker.debian.org/tracker/CVE-2007-1893

https://security-tracker.debian.org/tracker/CVE-2007-1894

https://security-tracker.debian.org/tracker/CVE-2007-1897

https://www.debian.org/security/2007/dsa-1285

Plugin Details

Severity: Medium

ID: 25152

File Name: debian_DSA-1285.nasl

Version: 1.15

Type: local

Agent: unix

Published: 5/3/2007

Updated: 1/4/2021

Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.3

CVSS v2

Risk Factor: Medium

Base Score: 6.5

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:wordpress, cpe:/o:debian:debian_linux:4.0

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Patch Publication Date: 5/1/2007

Reference Information

CVE: CVE-2007-1622, CVE-2007-1893, CVE-2007-1894, CVE-2007-1897

DSA: 1285