>> WordPress XML-RPC Implementation Arbitrary Post Editing Vulnerability
Title : WordPress XML-RPC Implementation Arbitrary Post Editing Vulnerability VUPEN ID : VUPEN/ADV-2008-0448 CVE ID : CVE-2008-0664
Rated as : Moderate Risk
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2008-02-07
Technical Description
A vulnerability has been identified in WordPress, which could be exploited by attackers to manipulate certain data. This issue is caused by an error in the XML-RPC implementation when processing user-supplied data, which could be exploited by attackers to bypass security restrictions and edit arbitrary posts via a specially crafted request.
