Lucene search

K
wpvulndbRyan DewhurstWPVDB-ID:D741F5AE-52CA-417D-A2CA-ACDFB7CA5808
HistoryDec 13, 2018 - 12:00 a.m.

WordPress <= 5.0 - File Upload to XSS on Apache Web Servers

2018-12-1300:00:00
Ryan Dewhurst
wpscan.com
20

0.001 Low

EPSS

Percentile

41.0%

According to WordPress: “Tim Coen and Slavco discovered that authors on Apache-hosted sites could upload specifically crafted files that bypass MIME verification, leading to a cross-site scripting vulnerability.”

0.001 Low

EPSS

Percentile

41.0%

Related for WPVDB-ID:D741F5AE-52CA-417D-A2CA-ACDFB7CA5808