0.002 Low
EPSS
Percentile
58.5%
An XSS vulnerability was discovered in the Flash fallback files in MediaElement, a library that is included with WordPress. Because the Flash files are no longer needed for most use cases, they have been removed from WordPress.
core.trac.wordpress.org/ticket/42720
github.com/WordPress/WordPress/commit/3fe9cb61ee71fcfadb5e002399296fcc1198d850
wordpress.org/news/2018/01/wordpress-4-9-2-security-and-maintenance-release/