0.002 Low
EPSS
Percentile
52.1%
Cross-site scripting (XSS) vulnerability in the network settings page in WordPress before 4.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
codex.wordpress.org/Version_4.5
core.trac.wordpress.org/query?status=closed&milestone=4.5
launchpad.net/bugs/cve/CVE-2016-6634
nvd.nist.gov/vuln/detail/CVE-2016-6634
security-tracker.debian.org/tracker/CVE-2016-6634
www.cve.org/CVERecord?id=CVE-2016-6634