CVE-2017-14720

Опубликовано: 23 сент. 2017

Источник: debian

EPSS Низкий

Описание

Before version 4.8.2, WordPress allowed a Cross-Site scripting attack in the template list view via a crafted template name.

Пакет	Статус	Версия исправления	Релиз	Тип
wordpress	fixed	4.8.2+dfsg-1		package

EPSS

Процентиль: 85%

0.02645

Низкий

CVE-2017-14720

CVSS3: 6.1

ubuntu

около 8 лет назад

Before version 4.8.2, WordPress allowed a Cross-Site scripting attack in the template list view via a crafted template name.

CVE-2017-14720

CVSS3: 6.1

nvd

около 8 лет назад

Before version 4.8.2, WordPress allowed a Cross-Site scripting attack in the template list view via a crafted template name.

GHSA-xmq7-vcg4-jfj9

CVSS3: 6.1

github

больше 3 лет назад

Before version 4.8.2, WordPress allowed a Cross-Site scripting attack in the template list view via a crafted template name.

EPSS

Процентиль: 85%

0.02645

Низкий