2 vanilla XSS on Wordpress ‘wp-register.php’

To: full-disclosure@xxxxxxxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx
Subject: 2 vanilla XSS on Wordpress ‘wp-register.php’
From: "Adrian P" <unknown.pentester@xxxxxxxxx>
Date: Sat, 22 Sep 2007 00:17:25 +0100
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; bh=0BYs5SNcoW4pLvH3/0upvP9A0NDAMSNDSXfiBGSBFyc=; b=NHoPrIMeiy5+mZZfk7Qou+nNTteoY4pNH1uLPHofLUnrY1qrrHsT6N0/0pU8Ydabr/gU8825FxZAlQ6YjnxkDEMFX/0367ZTsjhHPz439iWH3+YMsqYVVeEIMtT8es+Fi/dzcvdihBw5vhDGSx6tCevFj3OKto9zhoNYl9ybgyw=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=nXCbxDLIq2qEdOj2D69Kspj4T7MH0Y4CWyJqrhJGBAH1eDddT2G3FW9zdVWeSCfBs3GVE2gcoEbJS4/rn9aA31WZNrHE87a98LWNCdEXyBFlJXgc1Kc+gwQdCUWF6VMM+FSf7XE2dDRDCNIJ7rTToM3YXeO6fLL8inYYm7m6vm4=
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

There are two vanilla XSS on 'wp-register.php'. Only versions <=2.0.1
appear to be affected.

More info can be found on GNUCITIZEN's BlogSecurity:

http://blogsecurity.net/wordpress/2-vanilla-xss-on-wordpress-wp-registerphp/


Regards,

-- 
pagvac
gnucitizen.org, ikwt.com

Prev by Date: iDefense Security Advisory 09.20.07: CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities
Next by Date: Re: PHP-Nuke add admin ALL Versions
Previous by thread: iDefense Security Advisory 09.20.07: CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities
Next by thread: [ MDKSA-2007:187 ] - Updated PHP packages fix numerous vulnerabilities
Index(es):
- Date
- Thread