4 matches found
CVE-2016-5834
Cross-site scripting XSS vulnerability in the wpgetattachmentlink function in wp-includes/post-template.php in WordPress before 4.5.3 allows remote attackers to inject arbitrary web script or HTML via a crafted attachment name, a different vulnerability than CVE-2016-5833...
CVE-2016-5834
Cross-site scripting XSS vulnerability in the wpgetattachmentlink function in wp-includes/post-template.php in WordPress before 4.5.3 allows remote attackers to inject arbitrary web script or HTML via a crafted attachment name, a different vulnerability than CVE-2016-5833...
CVE-2016-5834
CVE-2016-5834 corresponds to a cross-site scripting (XSS) vulnerability in WordPress where the wp_get_attachment_link function in wp-includes/post-template.php could be exploited by a crafted attachment name to inject arbitrary script or HTML. Affected product: WordPress prior to version 4.5.3. R...
Wordpress 3.2.1 Core Module(post-template.php) Improper Sanitizing XSS
Exploit for php platform in category web applications Exploit Title : Wordpress 3.2.1 Core Modulepost-template.php Improper SanitizingPersistent Cross Site Scripting Vulnerability Author : Darshit Ashara Date : 21/08/2011 Vendor : Wordpress Version: 3.2.1 Software Link...