Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2017-17093

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wp-includes/general-template.php in WordPress before 4.9.1 does not properly restrict the lang attribute of an HTML element, which might allow attackers to...

5.4CVSS6.6AI score0.02376EPSS
Exploits0References2
Debian
Debian
added 2018/01/17 1:40 p.m.29 views

[SECURITY] [DSA 4090-1] wordpress security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4090-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 17, 2018 https://www.debian.org/security/faq -...

7.5CVSS2.8AI score0.08204EPSS
Exploits0
Debian
Debian
added 2018/01/17 1:40 p.m.26 views

[SECURITY] [DSA 4090-1] wordpress security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4090-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 17, 2018 https://www.debian.org/security/faq -...

9.8CVSS8.9AI score0.08204EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/12/26 12:0 a.m.33 views

Debian DLA-1216-1 : wordpress security update

Several vulnerabilities were discovered in wordpress, a web blogging tool. The Common Vulnerabilities and Exposures project identifies the following issues. CVE-2017-17091 wp-admin/user-new.php in WordPress sets the newbloguser key to a string that can be directly derived from the user ID, which...

8.8CVSS6.3AI score0.08204EPSS
Exploits0References6
Debian
Debian
added 2017/12/21 8:10 p.m.21 views

[SECURITY] [DLA 1216-1] wordpress security update

Package : wordpress Version : 3.6.1+dfsg-1deb7u20 CVE ID : CVE-2017-17091 CVE-2017-17092 CVE-2017-17093 CVE-2017-17094 Debian Bug : 883314 Several vulnerabilities were discovered in wordpress, a web blogging tool. The Common Vulnerabilities and Exposures project identifies the following issues...

8.8CVSS6.7AI score0.08204EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/12/04 12:0 a.m.72 views

WordPress < 4.9.1 Multiple Vulnerabilities - Linux

WordPress prior to 4.9.1 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.8CVSS6AI score0.08204EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/12/04 12:0 a.m.55 views

WordPress < 4.9.1 Multiple Vulnerabilities - Windows

WordPress prior to 4.9.1 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.8CVSS6AI score0.08204EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/12/04 12:0 a.m.65 views

WordPress < 4.9.1 Multiple Vulnerabilities

According to its self-reported version number, the WordPress application running on the remote web server is prior to 4.9.1. It is, therefore, affected by multiple vulnerabilities. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid105004; scriptversion"1.13";...

8.8CVSS6.3AI score0.08204EPSS
Exploits0References5
NVD
NVD
added 2017/12/02 6:29 a.m.15 views

CVE-2017-17093

wp-includes/general-template.php in WordPress before 4.9.1 does not properly restrict the lang attribute of an HTML element, which might allow attackers to conduct XSS attacks via the language setting of a site...

5.4CVSS5.9AI score0.02376EPSS
Exploits0References7
CVE
CVE
added 2017/12/02 6:0 a.m.168 views

CVE-2017-17093

CVE-2017-17093 affects WordPress prior to 4.9.1, specifically wp-includes/general-template.php where the lang attribute of an HTML element is not properly restricted. This design flaw can enable cross-site scripting (XSS) via the site language setting. The vulnerability is addressed by WordPress ...

5.4CVSS6.3AI score0.02376EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder