1
Candidate: CVE-2010-4257
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4257
6
SQL injection vulnerability in the do_trackbacks function in
7
wp-includes/comment.php in WordPress before 3.0.2 allows remote
8
authenticated users to execute arbitrary SQL commands via the Send
13
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=605603
19
upstream: http://core.trac.wordpress.org/changeset/16625
20
vendor: http://www.debian.org/security/2010/dsa-2138
21
debdiff: https://bugs.launchpad.net/ubuntu/+source/wordpress/+bug/716641
22
upstream_wordpress: released (3.0.2-1)
23
dapper_wordpress: ignored (reached end-of-life)
24
hardy_wordpress: ignored (reached end-of-life)
25
karmic_wordpress: ignored (reached end-of-life)
26
lucid_wordpress: released (2.9.2-1ubuntu1.2)
27
maverick_wordpress: released (3.0.1-1ubuntu1.2)
28
natty_wordpress: not-affected (3.0.2-1ubuntu1)
29
oneiric_wordpress: not-affected (3.0.2-1ubuntu1)
30
devel_wordpress: not-affected (3.0.2-1ubuntu1)