9 matches found
EUVD-2017-15872
Malware in sbrugna...
WordPress 4.1.x < 4.1.16 Multiple Vulnerabilities
According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A cross-site scripting XSS vulnerability exists in the wpplaylistshortcode function within the /wp-includes/media.php script due to a failure to validate input passed via...
WordPress 3.7.x < 3.7.19 Multiple Vulnerabilities
According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A cross-site scripting XSS vulnerability exists in the wpplaylistshortcode function within the /wp-includes/media.php script due to a failure to validate input passed via...
WordPress 4.7.x < 4.7.3 Multiple Vulnerabilities
According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A cross-site scripting XSS vulnerability exists in the wpplaylistshortcode function within the /wp-includes/media.php script due to a failure to validate input passed via...
CVE-2017-6818
In WordPress before 4.7.3 wp-admin/js/tags-box.js, there is cross-site scripting XSS via taxonomy term names...
DEBIAN-CVE-2017-6818
In WordPress before 4.7.3 wp-admin/js/tags-box.js, there is cross-site scripting XSS via taxonomy term names...
CVE-2017-6818
In WordPress before 4.7.3 wp-admin/js/tags-box.js, there is cross-site scripting XSS via taxonomy term names...
wordpress -- multiple vulnerabilities
WordPress versions 4.7.2 and earlier are affected by six security issues. Cross-site scripting XSS via media file metadata. Control characters can trick redirect URL validation. Unintended files can be deleted by administrators using the plugin deletion functionality. Cross-site scripting XSS via...
Nextcloud: Version 4.7.2 of wordpress is vulnerable
Hello team, I observed that your website https://nextcloud.com still use wordpress 4.7.2 Version 4.7.2 of wordpress is vulnerable to : Cross-site scripting XSS Control characters can trick redirect URL validation Cross-site scripting XSS via video URL in YouTube embeds Cross-site scripting XSS vi...