Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report.
Summary: Wordpress 2.2(.1): SQL injection, XSS, unrestricted file upload vulnerabilities Alias: CVE-2007-3544
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=245211
------- Additional Comments From john@ncphotography.com 2007-08-06 09:45 EST ------- There has been no patch from upstream for this issue, and no response from them in response to my latest query on this issue. When upstream generates a patch, or replies that the current release is not vulnerable, I will update this bug.