Lucene search
Veracode Vulnerability DatabaseVERACODE:25162HistoryMay 04, 2020 - 7:30 a.m.
Cross-site Scripting (XSS)
2020-05-0407:30:15
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15
EPSS
0.002
Percentile
51.5%
Wordpress is vulnerable to cross-site scripting (XSS). The navigation section of Customizer accepts the user-provided malicious scripts without proper handling, allowing an attacker to inject and execute arbitrary Javascript in a user’s browser.
Related
ubuntucve
ubuntucve
CVE-2020-11025
2020-04-30 00:00:00
debiancve
debiancve
CVE-2020-11025
2020-04-30 22:15:11
wpvulndb
wpvulndb
WordPress < 5.4.1 - Authenticated Cross-Site Scripting (XSS) in Customizer
2020-04-29 00:00:00
prion
prion
Cross site scripting
2020-04-30 22:15:00
osv
osv
BIT-wordpress-2020-11025
2024-03-06 11:12:18
BIT-wordpress-multisite-2020-11025
2024-03-06 11:12:10
CVE-2020-11025
2020-04-30 22:15:11
cve
cve
CVE-2020-11025
2020-04-30 22:15:11
openvas
openvas
WordPress XSS Vulnerability (May 2020) - Linux
2020-05-05 00:00:00
WordPress XSS Vulnerability (May 2020) - Windows
2020-05-05 00:00:00
Debian: Security Advisory (DSA-4677-1)
2020-05-07 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2020-11025
2020-04-30 22:15:11
debian
debian
[SECURITY] [DSA 4677-1] wordpress security update
2020-05-06 06:30:09
[SECURITY] [DSA 4677-1] wordpress security update
2020-05-06 06:30:09
nessus
nessus
Debian DSA-4677-1 : wordpress - security update
2020-05-07 00:00:00