FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

wordpress -- multiple vulnerabilities

Affected packages
de-wordpress < 3.6.1
ja-wordpress < 3.6.1
ru-wordpress < 3.6.1
wordpress < 3.6.1
zh-wordpress-zh_CN < 3.6.1
zh-wordpress-zh_TW < 3.6.1

Details

VuXML ID 043d3a78-f245-4938-9bc7-3d0d35dd94bf
Discovery 2013-09-11
Entry 2013-10-19

The wordpress development team reports:

Additionally, we've adjusted security restrictions around file uploads to mitigate the potential for cross-site scripting.

References

CVE Name CVE-2013-4338
CVE Name CVE-2013-4339
CVE Name CVE-2013-4340
CVE Name CVE-2013-5738
CVE Name CVE-2013-5739
URL http://wordpress.org/news/2013/09/wordpress-3-6-1/