[Bug 213985] New: CVE-2006-5705: wordpress < 2.0.5 directory traversal vulnerability

Sat Nov 4 09:36:06 UTC 2006

Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=213985

           Summary: CVE-2006-5705: wordpress < 2.0.5 directory traversal
                    vulnerability
           Product: Fedora Extras
           Version: fc6
          Platform: All
        OS/Version: Linux
            Status: NEW
          Severity: normal
          Priority: normal
         Component: wordpress
        AssignedTo: jwb at redhat.com
        ReportedBy: ville.skytta at iki.fi
         QAContact: extras-qa at fedoraproject.org
                CC: extras-qa at fedoraproject.org,fedora-security-
                    list at redhat.com

http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-5705

"Directory traversal vulnerability in plugins/wp-db-backup.php in WordPress
before 2.0.5 allows remote attackers to read arbitrary files via directory
traversal sequences in unspecified parameters related to the backup of fragment
files."

Based on the version number, all FE releases are affected.

-- 
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.