Package(s):	wordpress	CVE #(s):	CVE-2008-6762
Created:	August 27, 2009	Updated:	September 2, 2009
Description:	From the National Vulnerability Database entry: "Open redirect vulnerability in wp-admin/upgrade.php in WordPress, probably 2.6.x, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the backto parameter."
Alerts:	Debian DSA-1871-2 wordpress 2009-08-27

---

to post comments