http://bugzilla.opensuse.org/show_bug.cgi?id=1022444 Bug ID: 1022444 Summary: VUL-1: CVE-2017-5610: wordpress: unauthorized user's bypass Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.2 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: security-team@suse.de Reporter: mikhail.kasimov@gmail.com QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- Ref: http://seclists.org/oss-sec/2017/q1/217 ============================================ The user interface for assigning taxonomy terms in Press This is shown to users who do not have permissions to use it. Reported by David Herrera of Alley Interactive. https://github.com/WordPress/WordPress/commit/21264a31e0849e6ff793a06a17de87... ============================================ Assigned: CVE-2017-5610 https://software.opensuse.org/package/wordpress 4.6.1 version for TW|42.(1|2) in server:php:applications repo. -- You are receiving this mail because: You are on the CC list for the bug.