2009-07-10 20:25:00
mitre
PUBLISHED
WordPress 2.7.1 places the username of a posts author in an HTML comment, which allows remote attackers to obtain sensitive information by reading the HTML source.