4.0.31

DATE	CVE	VULNERABILITY TITLE	RISK
2016-08-07	CVE-2016-4029	Server-Side Request Forgery (SSRF) vulnerability in multiple products WordPress before 4.5 does not consider octal and hexadecimal IP address formats when determining an intranet address, which allows remote attackers to bypass an intended SSRF protection mechanism via a crafted address. network low complexity wordpress debian CWE-918	8.6