Lucene search
K

4 matches found

Debian
Debian
added 2020/01/08 5:47 a.m.140 views

[SECURITY] [DSA 4599-1] wordpress security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4599-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 08, 2020 https://www.debian.org/security/faq -...

7.5CVSS1.1AI score0.36503EPSS
Exploits9
Cvelist
Cvelist
added 2019/12/26 5:0 p.m.29 views

CVE-2019-16781 Stored cross-site scripting (XSS) in WordPress block editor

In WordPress before 5.3.1, authenticated users with lower privileges like contributors can inject JavaScript code in the block editor, which is executed within the dashboard. It can lead to an admin opening the affected post in the editor leading to XSS...

5.8CVSS7.2AI score0.01396EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2019/12/26 5:0 p.m.35 views

CVE-2019-16781

In WordPress before 5.3.1, authenticated users with lower privileges like contributors can inject JavaScript code in the block editor, which is executed within the dashboard. It can lead to an admin opening the affected post in the editor leading to XSS...

5.8CVSS4.7AI score0.01396EPSS
Exploits0
CVE
CVE
added 2019/12/26 5:0 p.m.157 views

CVE-2019-16781

WordPress CVE-2019-16781 affects WordPress versions before 5.3.1. Authenticated users with low privileges (e.g., contributors) can inject JavaScript in the block editor, which runs in the admin dashboard and can lead to an admin opening the affected post in the editor, enabling XSS. Remediation: ...

5.8CVSS5.7AI score0.01396EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder