|Category:||Debian Local Security Checks|
|Title:||Debian: Security Advisory for wordpress (DSA-4677-1)|
|Summary:||The remote host is missing an update for the 'wordpress'; package(s) announced via the DSA-4677-1 advisory.|
The remote host is missing an update for the 'wordpress'
package(s) announced via the DSA-4677-1 advisory.
Several vulnerabilities were discovered in Wordpress, a web blogging
tool. They allowed remote attackers to perform various Cross-Side
Scripting (XSS) and Cross-Site Request Forgery (CSRF) attacks, create
files on the server, disclose private information, create open
redirects, poison cache, and bypass authorization access and input
'wordpress' package(s) on Debian Linux.
For the oldstable distribution (stretch), these problems have been fixed
in version 4.7.5+dfsg-2+deb9u6.
For the stable distribution (buster), these problems have been fixed in
We recommend that you upgrade your wordpress packages.
Common Vulnerability Exposure (CVE) ID: CVE-2019-9787|
BugTraq ID: 107411
Debian Security Information: DSA-4677 (Google Search)
|Copyright||Copyright (C) 2020 Greenbone Networks GmbH|
|This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.