9 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-28038
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WordPress before 5.5.2 allows stored XSS via post slugs. CVE-2020-28038 Note that Nessus relies on the presence of the package as reported by the vendor...
Fedora: Security Advisory for wordpress (FEDORA-2020-b386fac43a)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] [DSA 4784-1] wordpress security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4784-1 [email protected] https://www.debian.org/security/ Sebastien Delafond November 06, 2020 https://www.debian.org/security/faq -...
Debian DLA-2429-1 : wordpress security update
There were several vulnerabilites reported against wordpress, as follows : CVE-2020-28032 WordPress before 4.7.19 mishandles deserialization requests in wp-includes/Requests/Utility/FilteredIterator.php. CVE-2020-28033 WordPress before 4.7.19 mishandles embeds from disabled sites on a multisite...
Debian: Security Advisory (DLA-2429-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2429-1] wordpress security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2429-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta November 03, 2020 https://wiki.debian.org/LTS -...
CVE-2020-28038
WordPress before 5.5.2 allows stored XSS via post slugs...
CVE-2020-28038
CVE-2020-28038 affects WordPress prior to 5.5.2, where stored XSS via post slugs is possible. The connected Nessus/Fedora entries confirm WordPress 5.5.2/5.5.3 maintenance releases addressing CVE-2020-28038 and related fixes, with WordPress 5.5.2 patching the stored XSS in post slugs. The vulnera...
CVE-2020-28038
WordPress before 5.5.2 allows stored XSS via post slugs...