Bug 659265 (CVE-2010-4257) - CVE-2010-4257 Wordpress: SQL injection flaw by processing trackbacks
Summary: CVE-2010-4257 Wordpress: SQL injection flaw by processing trackbacks
Alias: CVE-2010-4257
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
Whiteboard: public=20101130,reported=20101201,sou...
Depends On: 659319 668192
TreeView+ depends on / blocked
Reported: 2010-12-02 10:52 UTC by Jan Lieskovsky
Modified: 2019-06-08 18:41 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Last Closed: 2013-04-05 00:35:56 UTC

Attachments (Terms of Use)
Promised local copy of upstream changeset (591 bytes, patch)
2010-12-02 11:02 UTC, Jan Lieskovsky
no flags Details | Diff

Description Jan Lieskovsky 2010-12-02 10:52:59 UTC
An improper input sanitization flaw was found in the way Wordpress
performed trackbacks (a way to notify a website when an entry that
references it is published) maintainance. A remote attacker,
with Author-level privilege could use this flaw to conduct
SQL injection attacks (gain further access to the site, which
should be otherwise prohibited).

[1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=605603
[2] http://codex.wordpress.org/Version_3.0.2

Upstream changeset:
[3] http://core.trac.wordpress.org/changeset/16625

Note: You may want to use w3m browser, when trying to access [2],
      and [3], as we are having troubles / timeouts, when accessing
      it via firefox / konqueror. Will post a copy of upstream patch

Comment 1 Jan Lieskovsky 2010-12-02 10:56:38 UTC
This issue affects the version of the wordpress package, as shipped
with Fedora release of 13 and 14.

Please fix.


This issue affects the version of the wordpress package, as present
within EPEL-5 repository.

Please schedule an update.

Comment 2 Jan Lieskovsky 2010-12-02 11:02:51 UTC
Created attachment 464225 [details]
Promised local copy of upstream changeset

Comment 3 Jan Lieskovsky 2010-12-02 14:42:04 UTC
CVE Request:

Comment 4 Jan Lieskovsky 2010-12-02 14:44:36 UTC
Created wordpress tracking bugs for this issue

Affects: fedora-all [bug 659319]

Comment 5 Jan Lieskovsky 2010-12-03 11:00:41 UTC
The CVE identifier of CVE-2010-4257 has been assigned to this issue.

Note You need to log in before you can comment on or make changes to this bug.