CVE-2014-0165

EPSS 0.87%

wordpress - security update

Published: 4/10/2014Modified: 5/27/2026

Description

WordPress before 3.7.2 and 3.8.x before 3.8.2 allows remote authenticated users to publish posts by leveraging the Contributor role, related to wp-admin/includes/post.php and wp-admin/includes/class-wp-posts-list-table.php.

Affected packages (2)

Debian/wordpressfrom 0, < 3.8.2+dfsg-1
Debian/wordpressfrom 0, < 3.6.1+dfsg-1~deb6u2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-0165