4 matches found
[SECURITY] [DSA 4599-1] wordpress security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4599-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 08, 2020 https://www.debian.org/security/faq -...
CVE-2019-16780
WordPress users with lower privileges like contributors can inject JavaScript code in the block editor using a specific payload, which is executed within the dashboard. This can lead to XSS if an admin opens the post in the editor. Execution of this attack does require an authenticated user. This...
CVE-2019-16780
CVE-2019-16780 affects WordPress. Lower-privileged users (e.g., contributors) can inject JavaScript into the block editor via a specific payload, which is executed within the WordPress dashboard and can cause XSS if an admin opens the post in the editor. The attack requires an authenticated user....
CVE-2019-16780
WordPress users with lower privileges like contributors can inject JavaScript code in the block editor using a specific payload, which is executed within the dashboard. This can lead to XSS if an admin opens the post in the editor. Execution of this attack does require an authenticated user. This...