CVE-2008-1502 — wordpress - regression fix

Description

The _bad_protocol_once function in phpgwapi/inc/class.kses.inc.php in KSES, as used in eGroupWare before 1.4.003, Moodle before 1.8.5, and other products, allows remote attackers to bypass HTML filtering and conduct cross-site scripting (XSS) attacks via a string containing crafted URL protocols.

How to fix CVE-2008-1502

To remediate CVE-2008-1502, upgrade the affected package to a fixed version below.

Debian/wordpress—upgrade to 2.5.0-1 or later
Debian/wordpress—upgrade to 2.0.10-1etch4 or later
—upgrade to 2.0.10-1etch5 or later
—upgrade to 1.8.5 or later

Is CVE-2008-1502 being exploited?

Low — EPSS is 1.2%, meaning exploitation activity has not been observed at scale.

Affected packages (4)

from 0, < 2.5.0-1
from 0, < 2.0.10-1etch4
from 0, < 2.0.10-1etch5
from 0, < 1.8.5

References (23)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2008-1502
ADVISORYsecurity-tracker.debian.org/tracker/CVE-2008-1502
PATCHgithub.com/moodle/moodle
WEBdocs.moodle.org/en/Release_Notes#Moodle_1.8.5
WEB