6.5 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
52.4%
Cross-site scripting (XSS) vulnerability in the network settings page in WordPress before 4.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
codex.wordpress.org/Version_4.5
www.debian.org/security/2016/dsa-3681
www.securityfocus.com/bid/92390
core.trac.wordpress.org/query?status=closed&milestone=4.5
wpvulndb.com/vulnerabilities/8474