Cross-site scripting (XSS) vulnerability in example.html in Genericons
before 3.3.1, as used in WordPress before 4.2.2, allows remote attackers to
inject arbitrary web script or HTML via a fragment identifier.
Author | Note |
---|---|
msalvatore | When fixing this, it’s important to remove all of the genericons/example.html files |