ad761d7a2e
It contains 9 bugfixes and 5 security fixes: * Potential authentication cookie forgery. CVE-2014-0166. * Privilege escalation: prevent contributors from publishing posts. CVE-2014-0165. * (Hardening) Pass along additional information when processing pingbacks to help hosts identify potentially abusive requests. * (Hardening) Fix a low-impact SQL injection by trusted users. * (Hardening) Prevent possible cross-domain scripting through Plupload, the third-party library WordPress uses for uploading files. |
||
|---|---|---|
| .. | ||
| files | ||
| DESCR | ||
| distinfo | ||
| Makefile | ||
| MESSAGE | ||
| options.mk | ||
| PLIST | ||