3 matches found
[SECURITY] [DSA 4599-1] wordpress security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4599-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 08, 2020 https://www.debian.org/security/faq -...
CVE-2019-17673
WordPress before 5.2.4 is vulnerable to poisoning of the cache of JSON GET requests because certain requests lack a Vary: Origin header...
CVE-2019-17673
CVE-2019-17673 concerns WordPress versions before 5.2.4, where JSON GET request caches could be poisoned because some responses omit the Vary: Origin header. The vulnerability is a remote issue through the affected WordPress caching path; no exploit details are provided in the documents. The CVSS...