Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/wordpress@2.5.0-1?distro=trixie
purl pkg:deb/debian/wordpress@2.5.0-1?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-ba3v-4d8e-mfgx Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') The _bad_protocol_once function in phpgwapi/inc/class.kses.inc.php in KSES, as used in eGroupWare before 1.4.003, Moodle before 1.8.5, and other products, allows remote attackers to bypass HTML filtering and conduct cross-site scripting (XSS) attacks via a string containing crafted URL protocols. CVE-2008-1502
GHSA-v759-3wr5-p294
VCID-gfey-nhj7-6fap wordpress cookie authentication vulnerability CVE-2007-6013

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:14:07.036806+00:00 Debian Importer Fixing VCID-ba3v-4d8e-mfgx https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:03:12.558244+00:00 Debian Importer Fixing VCID-gfey-nhj7-6fap https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:06:44.684558+00:00 Debian Importer Fixing VCID-ba3v-4d8e-mfgx https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:30:18.831997+00:00 Debian Importer Fixing VCID-gfey-nhj7-6fap https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:57:48.805090+00:00 Debian Importer Fixing VCID-ba3v-4d8e-mfgx https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:57:48.412458+00:00 Debian Importer Fixing VCID-gfey-nhj7-6fap https://security-tracker.debian.org/tracker/data/json 38.1.0