WordPress: Wordpress 4.7.2 - Two XSS in Media Upload when file too large.
Description ------------------- An attacker can inject a malicious script in to the filename which a victim tries to upload leading to XSS inside the administrators control panel. Two different "file to large" cases end up in interpolating the file name and appending it into DOM unsanitized leadi...