Description
WordPress 2.7.1 places the username of a post's author in an HTML comment, which allows remote attackers to obtain sensitive information by reading the HTML source.
Remediation
References
Related Vulnerabilities
Apache Tomcat Improper Resource Shutdown or Release Vulnerability (CVE-2025-48989)
Drupal Core 9.0.x Cross-Site Request Forgery (9.0.0 - 9.0.14)
WordPress 4.1.x Multiple Vulnerabilities (4.1 - 4.1.9)
WordPress Plugin Sticky Popup Cross-Site Scripting (1.2)
concrete5 Server-Side Request Forgery (SSRF) Vulnerability (CVE-2018-13790)