Lucene search
GoogleOSV:CVE-2018-20153HistoryDec 14, 2018 - 8:29 p.m.
CVE-2018-20153
2018-12-1420:29:00
Google
osv.dev
4
In WordPress before 4.9.9 and 5.x before 5.0.1, contributors could modify new comments made by users with greater privileges, possibly causing XSS.
References
www.securityfocus.com/bid/106220
codex.wordpress.org/Version_4.9.9
lists.debian.org/debian-lts-announce/2019/02/msg00019.html
wordpress.org/news/2018/12/wordpress-5-0-1-security-release/
wordpress.org/support/wordpress-version/version-5-0-1/
wpvulndb.com/vulnerabilities/9172
www.debian.org/security/2019/dsa-4401
www.zdnet.com/article/wordpress-plugs-bug-that-led-to-google-indexing-some-user-passwords/
Related
cve
cve
CVE-2018-20153
2018-12-14 20:29:00
veracode
veracode
Privilege Escalation
2018-12-17 10:43:31
nvd
nvd
CVE-2018-20153
2018-12-14 20:29:00
ubuntucve
ubuntucve
CVE-2018-20153
2018-12-14 00:00:00
debiancve
debiancve
CVE-2018-20153
2018-12-14 20:29:00
cvelist
cvelist
CVE-2018-20153
2018-12-14 20:00:00
wpvulndb
wpvulndb
WordPress <= 5.0 - Authenticated Cross-Site Scripting (XSS)
2018-12-13 00:00:00
prion
prion
Cross site scripting
2018-12-14 20:29:00
nessus
nessus
WordPress < 4.9.9 / 5.x < 5.0.1 Multiple Vulnerabilities
2018-12-13 00:00:00
Debian DLA-1673-1 : wordpress security update
2019-02-12 00:00:00
Debian DSA-4401-1 : wordpress - security update
2019-03-04 00:00:00
openvas
openvas
WordPress Multiple Vulnerabilities (Dec 2018) - Windows
2018-12-17 00:00:00
WordPress Multiple Vulnerabilities (Dec 2018) - Linux
2018-12-17 00:00:00
Debian: Security Advisory (DLA-1673-1)
2019-02-11 00:00:00
osv
osv
wordpress - security update
2019-02-11 00:00:00
wordpress - security update
2019-03-01 00:00:00
debian
debian
[SECURITY] [DLA 1673-1] wordpress security update
2019-02-11 23:24:13
[SECURITY] [DSA 4401-1] wordpress security update
2019-03-01 07:03:31
[SECURITY] [DSA 4401-1] wordpress security update
2019-03-01 07:03:31