Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2024 and is owned by Tenable, Inc. or an Affiliate thereof.WEB_APPLICATION_SCANNING_98277
HistoryNov 05, 2018 - 12:00 a.m.

WordPress 4.2.x < 4.2.13 Multiple Vulnerabilities

2018-11-0500:00:00
This script is Copyright (C) 2018-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
JSON

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities :

  • A cross-site scripting (XSS) vulnerability exists in the wp_playlist_shortcode() function within the /wp-includes/media.php script due to a failure to validate input passed via audio file metadata before returning it to users. An unauthenticated, remote attacker can exploit this, via a specially crafted request, to execute arbitrary script code in a user’s browser session. (CVE-2017-6814)

  • A cross-site redirection vulnerability exists due to a failure to validate input passed via control characters before returning it to users. An unauthenticated, remote attacker can exploit this, via a specially crafted link, to redirect a user from an intended legitimate website to an arbitrary website of the attacker’s choosing. (CVE-2017-6815)

  • An unspecified flaw exists in the plugin deletion functionality that allows an authenticated, remote attacker to delete unintended files. (CVE-2017-6816)

  • A cross-site scripting (XSS) vulnerability exists due to a failure to validate input to video URLs in YouTube embeds before returning it to users. An unauthenticated, remote attacker can exploit this, via a specially crafted request, to execute arbitrary script code in a user’s browser session. (CVE-2017-6817)

  • A cross-site scripting (XSS) vulnerability exists due to a failure to validate input to taxonomy term names before returning it to users. An unauthenticated, remote attacker can exploit this, via a specially crafted request, to execute arbitrary script code in a user’s browser session. (CVE-2017-6818)

  • A cross-site request forgery (XSRF) vulnerability exists in the Press This functionality, specifically within /wp-admin/press-this.php when handling HTTP requests, due to a failure to require multiple steps, explicit confirmation, or a unique token when performing certain sensitive actions. An unauthenticated, remote attacker can exploit this, by convincing a user to follow a specially crafted link, to cause excessive consumption of server resources. (CVE-2017-6819)

  • A DOM-based cross-site scripting (XSS) vulnerability exists in the renderTracks() function within the /wp-includes/js/mediaelement/wp-playlist.min.js script due to a failure to validate input passed via audio file metadata before returning it to users. An unauthenticated, remote attacker can exploit this, via a specially crafted request, to execute arbitrary script code in a user’s browser session.

Note that the scanner has not tested for these issues but has instead relied only on the application’s self-reported version number.

No source data
VendorProductVersionCPE
wordpresswordpress*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*

Related

nessus 13
archlinux 1
openvas 5
debian 3
osv 8
wpvulndb 6
debiancve 6
prion 6
ubuntucve 6
cve 6
nessus
nessus
WordPress 4.4.x < 4.4.8 Multiple Vulnerabilities
2018-11-05 00:00:00
WordPress 4.5.x < 4.5.7 Multiple Vulnerabilities
2018-11-05 00:00:00
WordPress 3.9.x < 3.9.17 Multiple Vulnerabilities
2018-11-05 00:00:00
archlinux
archlinux
[ASA-201703-14] wordpress: multiple issues
2017-03-16 00:00:00
openvas
openvas
WordPress Multiple Vulnerabilities (Mar 2017) - Linux
2017-03-07 00:00:00
WordPress Multiple Vulnerabilities (Mar 2017) - Windows
2017-03-07 00:00:00
Debian: Security Advisory (DSA-3815-1)
2017-03-22 00:00:00
debian
debian
[SECURITY] [DSA 3815-1] wordpress security update
2017-03-23 07:56:13
[SECURITY] [DSA 3815-1] wordpress security update
2017-03-23 07:56:13
[SECURITY] [DLA 860-1] wordpress security update
2017-03-17 11:22:03
osv
osv
wordpress - security update
2017-03-23 00:00:00
wordpress - security update
2017-03-17 00:00:00
CVE-2017-6818
2017-03-12 01:59:00
wpvulndb
wpvulndb
WordPress 4.7-4.7.2 - Cross-Site Scripting (XSS) via Taxonomy Term Names
2017-03-06 00:00:00
WordPress 4.2-4.7.2 - Press This CSRF DoS
2017-03-06 00:00:00
WordPress 2.8.1-4.7.2 - Control Characters in Redirect URL Validation
2017-03-06 00:00:00
debiancve
debiancve
CVE-2017-6818
2017-03-12 01:59:00
CVE-2017-6817
2017-03-12 01:59:00
CVE-2017-6819
2017-03-12 01:59:00
prion
prion
Cross site scripting
2017-03-12 01:59:00
Input validation
2017-03-12 01:59:00
Cross site scripting
2017-03-12 01:59:00
ubuntucve
ubuntucve
CVE-2017-6818
2017-03-12 00:00:00
CVE-2017-6819
2017-03-12 00:00:00
CVE-2017-6815
2017-03-12 00:00:00
cve
cve
CVE-2017-6818
2017-03-12 01:59:00
CVE-2017-6815
2017-03-12 01:59:00
CVE-2017-6819
2017-03-12 01:59:00
JSON
Related for WEB_APPLICATION_SCANNING_98277
nessus13archlinux1openvas5debian3osv8wpvulndb6debiancve6prion6ubuntucve6cve6