ThreatPress

WordPress Vulnerabilities Database

Back

WordPress <= 3.0.2 - BYPASS

Product
WordPress
Description
Because of this vulnerability, authenticated users can bypass intended access restrictions, and publish, edit or delete posts.
Solution
Update WordPress.
Classification
Type BYPASS
References
CVE Mitre
CVE
Name CVE-2010-5106
Versions
Affected In <= 3.0.2
Fixed In 3.0.3
Disclosure date
2012-04-30
Credits
Kurt Seifried