FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

wordpress -- unmoderated comments disclosure

Affected packages
de-wordpress < 2.2.2
wordpress < 2.2.2
zh-wordpress < 2.2.2


VuXML ID 6a31cbe3-1695-11dc-a197-0011098b2f36
Discovery 2007-06-01
Entry 2007-06-09
Modified 2007-08-16

Blogsecurity reports:

An attacker can read comments on posts that have not been moderated. This can be a real security risk if blog admins are using unmoderated comments (comments that have not been made public) to hide sensitive notes regarding posts, future work, passwords etc. So please be careful if you are one of these blog admins.