Description
wp-admin/upgrade.php in WordPress, probably 2.6.x, allows remote attackers to upgrade the application, and possibly cause a denial of service (application outage), via a direct request.
Remediation
References
Related Vulnerabilities
WordPress Plugin wp-microblogs Cross-Site Scripting (0.4.0)
WordPress Plugin Export Post Info Cross-Site Scripting (1.1.0)
WordPress Plugin moreAds SE Open Redirect (1.4.8)
WordPress Plugin WM Simple Captcha Security Bypass (2.0.3)
WordPress Plugin NextGEN Gallery-WordPress Gallery Unspecified Vulnerability (2.0.77.3)