CVE-2018-20150

Опубликовано: 14 дек. 2018

Источник: debian

EPSS Низкий

Описание

In WordPress before 4.9.9 and 5.x before 5.0.1, crafted URLs could trigger XSS for certain use cases involving plugins.

Пакет	Статус	Версия исправления	Релиз	Тип
wordpress	fixed	5.0.1+dfsg1-1		package

https://wordpress.org/news/2018/12/wordpress-5-0-1-security-release/
https://github.com/WordPress/WordPress/commit/fb3c6ea0618fcb9a51d4f2c1940e9efcd4a2d460

EPSS

Процентиль: 89%

0.04968

Низкий

CVE-2018-20150

CVSS3: 6.1

ubuntu

больше 6 лет назад

In WordPress before 4.9.9 and 5.x before 5.0.1, crafted URLs could trigger XSS for certain use cases involving plugins.

CVE-2018-20150

CVSS3: 6.1

nvd

больше 6 лет назад

In WordPress before 4.9.9 and 5.x before 5.0.1, crafted URLs could trigger XSS for certain use cases involving plugins.

GHSA-f844-ppv9-vxhv

CVSS3: 6.1

github

около 3 лет назад

In WordPress before 4.9.9 and 5.x before 5.0.1, crafted URLs could trigger XSS for certain use cases involving plugins.

EPSS

Процентиль: 89%

0.04968

Низкий