ThreatPress

WordPress Vulnerabilities Database

Back

WordPress MU <= 2.7 - 'HOST' HTTP Header XSS Vulnerability

Product
WordPress MU
Description
WordPress MU prior to version 2.7 fails to sanitize the Host header correctly in choose_primary_blog function and can be hacked. Sites running in based virtual hosting setup are not affected while they are not the default virtual host.
Solution
Upgrade WordPress.
Classification
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
References
Exploit-DB
CVE
Name CVE-2009-1030
Versions
Affected In <= 2.7
Fixed In 2.8
Disclosure date
2009-03-10
Credits
Juan Galiana Lara