View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0000199 | Main CAcert Website | misc | public | 2006-04-05 07:43 | 2013-01-14 03:13 |
Reporter | Assigned To | ||||
Priority | normal | Severity | major | Reproducibility | always |
Status | closed | Resolution | fixed | ||
Fixed in Version | 2006 | ||||
Summary | 0000199: necessary security update for wordpress blog software | ||||
Description | The software used on blog.cacert.org claims to be "WordPress 1.5.2" and there have been several security updates lately (the current version is 2.0.2). Especially as the rss feed from http://blog.CAcert.org/feed/rss/ gets included in the www.cacert.org frontpage this might lead to a security risk for cacert.org aswell (eg. XSS, CSFR, Session Fixiation, ...) I recommend to update the blog software as soon as possible. | ||||
Tags | No tags attached. | ||||
Reviewed by | |||||
Test Instructions | |||||
Date Modified | Username | Field | Change |
---|---|---|---|
2006-04-05 07:43 |
|
New Issue | |
2006-04-21 06:23 | duane | Status | new => closed |
2006-04-21 06:23 | duane | Note Added: 0000163 | |
2006-04-21 06:23 | duane | Resolution | open => fixed |
2006-04-21 06:23 | duane | Fixed in Version | => production |
2013-01-14 03:13 | Werner Dworak | Fixed in Version | => 2006 |