WordPress PHP Code Execution and Cross-Site Scripting

This one is just off the wire this morning. To fellow WP users out there be aware of this vulnerability and be sure to upgrade your instance as soon as feasible.

From Secunia:

Two vulnerabilities have been reported in WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, and to compromise a vulnerable system.

1) A vulnerability is caused due to improper access restriction of the administration section. This can be exploited to bypass the authentication mechanism and gain administrative access by setting a specially crafted cookie. This can further be exploited to execute arbitrary PHP code.

Successful exploitation of this vulnerability requires that registering new accounts is enabled.

The vulnerability is reported in version 2.5.

2) Input passed to an unspecified parameter is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user’s browser session in context of an affected site.

Article Link

[Source: Liquidmatrix]