{"id":"MGASA-2015-0377","summary":"Updated wordpress package fixes security vulnerabilities","details":"Updated wordpress packages fixes security vulnerabilities:\n\nThe wordpress package has been updated to version 3.9.9, fixing two\ncross-site scripting issues and a potential privilege escalation issue\n(CVE-2015-5714, CVE-2015-5715), as well as other bugs.  See the upstream\nannouncement and release notes for more details.\n","modified":"2026-02-04T04:37:10.626463Z","published":"2015-09-17T18:02:40Z","related":["CVE-2015-5714","CVE-2015-5715"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2015-0377.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=16763"},{"type":"REPORT","url":"https://codex.wordpress.org/Version_3.9.9"},{"type":"REPORT","url":"https://wordpress.org/news/2015/09/wordpress-4-3-1/"}],"affected":[{"package":{"name":"wordpress","ecosystem":"Mageia:4","purl":"pkg:rpm/mageia/wordpress?arch=source&distro=mageia-4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.9.9-1.mga4"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2015-0377.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}