4 matches found
[SECURITY] [DSA 4599-1] wordpress security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4599-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 08, 2020 https://www.debian.org/security/faq -...
CVE-2019-16781 Stored cross-site scripting (XSS) in WordPress block editor
In WordPress before 5.3.1, authenticated users with lower privileges like contributors can inject JavaScript code in the block editor, which is executed within the dashboard. It can lead to an admin opening the affected post in the editor leading to XSS...
CVE-2019-16781
In WordPress before 5.3.1, authenticated users with lower privileges like contributors can inject JavaScript code in the block editor, which is executed within the dashboard. It can lead to an admin opening the affected post in the editor leading to XSS...
CVE-2019-16781
WordPress CVE-2019-16781 affects WordPress versions before 5.3.1. Authenticated users with low privileges (e.g., contributors) can inject JavaScript in the block editor, which runs in the admin dashboard and can lead to an admin opening the affected post in the editor, enabling XSS. Remediation: ...