Remote users may reset the admin password (?)
Bug #412546 reported by
Rolf Leggewie
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
wordpress (Debian) |
Fix Released
|
Unknown
|
|||
wordpress (Ubuntu) |
Fix Released
|
High
|
Unassigned | ||
Bug Description
Binary package hint: wordpress
I just browsed the Debian BTS today and came across. http://
I don't think vulnerability has been established yet, but I thought I'd report it here nonetheless to give you a chance to take a look.
According to the information in the original report on lists.grok.org.uk, all current Ubuntu releases of Wordpress would be affected.
http://
http://
visibility: | private → public |
Changed in wordpress (Debian): | |
status: | Unknown → New |
Changed in wordpress (Ubuntu): | |
status: | New → Confirmed |
importance: | Undecided → High |
Changed in wordpress (Debian): | |
status: | New → Fix Released |
To post a comment you must log in.
This was fixed in 2.8.3-2ubuntu1