CVE-2010-5293
Publication date 21 January 2014
Last updated 24 July 2024
Ubuntu priority
wp-includes/comment.php in WordPress before 3.0.2 does not properly whitelist trackbacks and pingbacks in the blogroll, which allows remote attackers to bypass intended spam restrictions via a crafted URL, as demonstrated by a URL that triggers a substring match.
Status
Package | Ubuntu Release | Status |
---|---|---|
wordpress | 13.10 saucy |
Not affected
|
13.04 raring |
Not affected
|
|
12.10 quantal |
Not affected
|
|
12.04 LTS precise |
Not affected
|
|
10.04 LTS lucid | Ignored end of life |