Author: jmm-guest Date: 2005-06-30 08:39:58 +0000 (Thu, 30 Jun 2005) New Revision: 1305 Modified: data/CAN/list Log: Two issues in high quality blog software: - wordpress already fixed - serendipity not yet in Debian, but let''s have an eye on it Modified: data/CAN/list ==================================================================--- data/CAN/list 2005-06-29 21:20:44 UTC (rev 1304) +++ data/CAN/list 2005-06-30 08:39:58 UTC (rev 1305) @@ -1,3 +1,5 @@ +CAN-2005-XXXX [XSS, SQL injection and other issues in Wordpress] + - wordpress 1.5.1.3-1 CAN-2005-XXXX [proftpd format string vulnerability in ftpshut] - proftpd 1.2.10-9 CAN-2005-2078 (BisonFTP Server V4R1 allows remote authenticated users to cause a ...) @@ -1038,8 +1040,9 @@ NOTE: reserved CAN-2005-1922 NOTE: reserved -CAN-2005-1921 +CAN-2005-1921 [Remote code execution through Serendipity''s XMPRPC parser] NOTE: reserved + TODO: Track ITP #312413 CAN-2005-1920 NOTE: reserved CAN-2005-1919