Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 728006 (CVE-2020-4046, CVE-2020-4047, CVE-2020-4048, CVE-2020-4049, CVE-2020-4050) - <www-apps/wordpress-5.4.2: Multiple vulnerabilities (CVE-2020-{4046,4047,4048,4049,4050})
Summary: <www-apps/wordpress-5.4.2: Multiple vulnerabilities (CVE-2020-{4046,4047,4048...
Status: RESOLVED FIXED
Alias: CVE-2020-4046, CVE-2020-4047, CVE-2020-4048, CVE-2020-4049, CVE-2020-4050
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal trivial (vote)
Assignee: Gentoo Security
URL: https://wordpress.org/news/2020/06/wo...
Whiteboard: ~4 [noglsa cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2020-06-11 23:48 UTC by John Helmert III
Modified: 2020-06-13 11:43 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2020-06-11 23:48:17 UTC
From $URL:

    Props to Sam Thomas (jazzy2fives) for finding an XSS issue where authenticated users with low privileges are able to add JavaScript to posts in the block editor.
    Props to Luigi – (gubello.me) for discovering an XSS issue where authenticated users with upload permissions are able to add JavaScript to media files.
    Props to Ben Bidner of the WordPress Security Team for finding an open redirect issue in wp_validate_redirect().
    Props to Nrimo Ing Pandum for finding an authenticated XSS issue via theme uploads.
    Props to Simon Scannell of RIPS Technologies for finding an issue where set-screen-option can be misused by plugins leading to privilege escalation.
    Props to Carolina Nymark for discovering an issue where comments from password-protected posts and pages could be displayed under certain conditions.

Maintainer(s): Please cleanup vulnerable versions.
Comment 1 Larry the Git Cow gentoo-dev 2020-06-12 03:34:04 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e049b95352cd5111d4c73ecbcd04125a9b881900

commit e049b95352cd5111d4c73ecbcd04125a9b881900
Author:     Aaron Bauman <bman@gentoo.org>
AuthorDate: 2020-06-12 03:33:21 +0000
Commit:     Aaron Bauman <bman@gentoo.org>
CommitDate: 2020-06-12 03:33:21 +0000

    www-apps/wordpress: drop vulnerable
    
    Bug: https://bugs.gentoo.org/728006
    Signed-off-by: Aaron Bauman <bman@gentoo.org>

 www-apps/wordpress/Manifest               |  1 -
 www-apps/wordpress/wordpress-5.4.1.ebuild | 57 -------------------------------
 2 files changed, 58 deletions(-)