View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0000199 | Main CAcert Website | misc | public | 2006-04-05 07:43 | 2013-01-14 03:13 |
| Reporter | Assigned To | ||||
| Priority | normal | Severity | major | Reproducibility | always |
| Status | closed | Resolution | fixed | ||
| Fixed in Version | 2006 | ||||
| Summary | 0000199: necessary security update for wordpress blog software | ||||
| Description | The software used on blog.cacert.org claims to be "WordPress 1.5.2" and there have been several security updates lately (the current version is 2.0.2). Especially as the rss feed from http://blog.CAcert.org/feed/rss/ gets included in the www.cacert.org frontpage this might lead to a security risk for cacert.org aswell (eg. XSS, CSFR, Session Fixiation, ...) I recommend to update the blog software as soon as possible. | ||||
| Tags | No tags attached. | ||||
| Reviewed by | |||||
| Test Instructions | |||||
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2006-04-05 07:43 |
|
New Issue | |
| 2006-04-21 06:23 | duane | Status | new => closed |
| 2006-04-21 06:23 | duane | Note Added: 0000163 | |
| 2006-04-21 06:23 | duane | Resolution | open => fixed |
| 2006-04-21 06:23 | duane | Fixed in Version | => production |
| 2013-01-14 03:13 | Werner Dworak | Fixed in Version | => 2006 |
