Oval Definition:	oval:com.ubuntu.xenial:def:20155623000
Revision Date: 2015-08-03 Version: 1 Title: CVE-2015-5623 on Ubuntu 16.04 LTS (xenial) - medium. Description: WordPress before 4.2.3 does not properly verify the edit_posts capability, which allows remote authenticated users to bypass intended access restrictions and create drafts by leveraging the Subscriber role, as demonstrated by a post-quickdraft-save action to wp-admin/post.php. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-5623 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND NOT While related to the CVE in some way, the 'wordpress' package in xenial is not affected (note: '4.2.4+dfsg-1').
BACK