Philipp A. Baer

2005-08-09: Wordpress Exploit no comments

Wordpress < = 1.5.1.3 is vulnerable to a server-side XSS attack. It requires register\_globals
to be turned on. If you can’t disable registration of global variables you might want to enable safe\_mode or disable some of the unsafe functions by adding

disable_functions = exec, system, passthru

to your php.ini.

Found on fh’s blog

CN: RoboCup2009

Third RR Group A
- 1.RFC (6)
- TU (3)
- CN (0)
Second RR Group A
- TU (12)
- CN (6)
- MRL (4)
- Water (4)
- MH (0)
First RR Group B
- 1.RFC (18)
- MRL (12)
- HM (10)
- CN (10)
- WinKIT (6)
- MRT (3)
- HKD (0)

Wed, 01. July 2009
- CN:HM – 0:0
- CN:MRL – 0:3
- CN:1.RFC – 1:4
Thu, 02. July 2009
- CN:MRT – 3:0
- CN:WinKIT – 2:0
Fri, 03. July 2009
- CN:HKD – resigned
- CN:Water – 1:0
- CN:MH – 3:0
Sat, 04. July 2009
- CN:MRL – 0:1
- CN:TU – 0:3
- CN:1.RFC – 1:3
- CN:TU – 1:4

For all team-realted issues, please have a look at the Carpe Noctem Website.

For the current results, please have a look at Tech United's web page.

This entry was posted on Tuesday, 09 August 2005 at 21:09 and is filed under Binary World, Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

2005-08-09: Wordpress Exploit no comments

CN: RoboCup2009

Leave a Reply