Index: vuln.xml =================================================================== --- vuln.xml +++ vuln.xml @@ -58,6 +58,46 @@ * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> + + Wordpress -- multible vulnerabilities + + + wordpress + 4.7.5,1 + + + de-wordpress + fr-wordpress + ja-wordpress + ru-wordpress + zh-wordpress-zh_CN + zh-wordpress-zh_TW + 4.7.5,1 + + + + +

+
WordPress versions 4.7.4 and earlier are affected by six security issues
+
+
Insufficient redirect validation in the HTTP class.
+
Improper handling of post meta data values in the XML-RPC API.
+
Lack of capability checks for post meta data in the XML-RPC API.
+
A Cross Site Request Forgery (CRSF) vulnerability was discovered in the filesystem credentials dialog.
+
A cross-site scripting (XSS) vulnerability was discovered related to the Customizer.
+
+

+ + + + https://wordpress.org/news/2017/05/wordpress-4-7-5/ + + + 2017-05-16 + 2017-05-21 + + + asterisk -- Memory exhaustion on short SCCP packets