Linux Distros Unpatched Vulnerability : CVE-2019-16217

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WordPress before 5.2.3 allows XSS in media uploads because wpajaxuploadattachment is mishandled. CVE-2019-16217 Note that Nessus relies on the presence of the...

[SECURITY] [DSA 4599-1] wordpress security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4599-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 08, 2020 https://www.debian.org/security/faq -...

CVE-2019-16217

WordPress, versions before 5.2.3, is affected by an XSS flaw in media uploads due to mishandling of wp_ajax_upload_attachment. The underlying issue is improper handling of upload attachments that allows cross-site scripting. The impact is XSS in the context of media uploads, with no other vectors...

CVE-2019-16217

WordPress before 5.2.3 allows XSS in media uploads because wpajaxuploadattachment is mishandled...

WordPress <= 3.6.1 / 3.7.x < 3.7.30 / 3.8.x < 3.8.30 / 3.9.x < 3.9.28 / 4.0.x < 4.0.27 / 4.1.x < 4.1.27 / 4.2.x < 4.2.24 / 4.3.x < 4.3.20 / 4.4.x < 4.4.19 / 4.5.x < 4.5.18 / 4.6.x < 4.6.15 / 4.7.x < 4.7.14 / 4.8.x < 4.8.10 / 4.9.x < 4.9.11 / 5.0.x < 5.0.6 / 5.1.x < 5.1.2 / 5.2.x < 5.2.3 Multiple Vulnerabilities

According to its self-reported version number, the WordPress application running on the remote web server is affected by multiple vulnerabilities: - An open redirect vulnerability exists in WordPress due to improper sanitization of user-supplied input to HTTP request parameters. An unauthenticate...