Candidate: CVE-2010-0682
PublicDate: 2010-02-23 20:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0682
Description:
 WordPress 2.9 before 2.9.2 allows remote authenticated users to read trash
 posts from other authors via a direct request with a modified p parameter.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_wordpress:
 upstream: https://core.trac.wordpress.org/changeset/13117
 upstream: https://core.trac.wordpress.org/changeset/13118
upstream_wordpress: released (2.9.2)
dapper_wordpress: ignored (reached end-of-life)
hardy_wordpress: ignored (reached end-of-life)
intrepid_wordpress: needs-triage (reached end-of-life)
jaunty_wordpress: ignored (reached end-of-life)
karmic_wordpress: ignored (reached end-of-life)
lucid_wordpress: not-affected (2.9.2-1ubuntu1)
maverick_wordpress: not-affected (2.9.2-1ubuntu1)
natty_wordpress: not-affected (2.9.2-1ubuntu1)
oneiric_wordpress: not-affected (2.9.2-1ubuntu1)
devel_wordpress: not-affected (2.9.2-1ubuntu1)