Search for packages
| purl | pkg:deb/debian/wordpress@3.0.5%2Bdfsg-1?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-fzyt-wpgd-byh1 | Multiple cross-site scripting (XSS) vulnerabilities in WordPress before 3.0.5 allow remote authenticated users to inject arbitrary web script or HTML via vectors related to (1) the Quick/Bulk Edit title (aka post title or post_title), (2) post_status, (3) comment_status, (4) ping_status, and (5) escaping of tags within the tags meta box. |
CVE-2011-0700
|
| VCID-v8by-vn2q-r7gx | wp-admin/async-upload.php in the media uploader in WordPress before 3.0.5 allows remote authenticated users to read (1) draft posts or (2) private posts via a modified attachment_id parameter. |
CVE-2011-0701
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T09:05:22.155702+00:00 | Debian Importer | Fixing | VCID-fzyt-wpgd-byh1 | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-16T08:43:39.782531+00:00 | Debian Importer | Fixing | VCID-v8by-vn2q-r7gx | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-11T18:05:25.957166+00:00 | Debian Importer | Fixing | VCID-fzyt-wpgd-byh1 | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-11T17:51:50.565185+00:00 | Debian Importer | Fixing | VCID-v8by-vn2q-r7gx | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-03T07:57:50.634442+00:00 | Debian Importer | Fixing | VCID-v8by-vn2q-r7gx | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |
| 2026-04-03T07:57:50.594237+00:00 | Debian Importer | Fixing | VCID-fzyt-wpgd-byh1 | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |