Candidate: CVE-2010-5293
PublicDate: 2014-01-21 01:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-5293
 https://core.trac.wordpress.org/ticket/13887
 https://core.trac.wordpress.org/changeset/16637
 http://codex.wordpress.org/Version_3.0.2
Description:
 wp-includes/comment.php in WordPress before 3.0.2 does not properly
 whitelist trackbacks and pingbacks in the blogroll, which allows remote
 attackers to bypass intended spam restrictions via a crafted URL, as
 demonstrated by a URL that triggers a substring match.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by: 
Assigned-to:
CVSS: 

Patches_wordpress:
upstream_wordpress: released (3.0.2)
lucid_wordpress: ignored (reached end-of-life)
precise_wordpress: not-affected
quantal_wordpress: not-affected
raring_wordpress: not-affected
saucy_wordpress: not-affected
devel_wordpress: not-affected