WordPress Multiple Vulnerabilities

Summary
This host is running WordPress, which is prone to multiple vulnerabilities.
Impact
Successful exploitation will allow attackers to reset the password of arbitrary accounts, guess randomly generated passwords, obtain sensitive information and possibly to impersonate users and tamper with network data. Impact Level : Application
Solution
Upgrade to WordPress 2.6.2 or later. http://wordpress.org/
Insight
The flaws are due to, - SQL column-truncation issue. - Weakness in the entropy of generated passwords. - functions get_edit_post_link(), and get_edit_comment_link() fail to use SSL when transmitting data.
Affected
WordPress 2.6.1 and prior versions.
References