DSA-5279-2 wordpress -- wordpressID: oval:org.secpod.oval:def:88432 | Date: (C)2023-03-28 (M)2023-03-28 |
Class: PATCH | Family: unix |
The wordpress package released in DSA-5279-1 had incorrect dependencies that could not be satisfied in Debian stable: this update corrects the problem. For reference, the original advisory text is provided here again: Several vulnerabilities were discovered in Wordpress, a web blogging tool. They allowed remote attackers to perform SQL injection, create open redirects, bypass authorization access, or perform Cross-Site Request Forgery or Cross-Site Scripting attacks.