reopen 316402 tags 316402 + stable security thanks This bug is present in the stable version of wordpress. A proper DSA and fix is needed. Note that the CAN for this is http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2108
There are also a number of other ones fixed in wordpress 1.5.1.3; CAN-2005-2109, CAN-2005-2110, CAN-2005-2107, and possibly more that I missed. I can't seem to find an upstream changelog for it, but 1.5.1.3 might be made up entirely of security fixes. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]