Описание
In WordPress before 4.9.9 and 5.x before 5.0.1, contributors could modify new comments made by users with greater privileges, possibly causing XSS.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| wordpress | fixed | 5.0.1+dfsg1-1 | package |
Примечания
https://wordpress.org/news/2018/12/wordpress-5-0-1-security-release/
Связанные уязвимости
CVSS3: 5.4
ubuntu
больше 6 лет назад
In WordPress before 4.9.9 and 5.x before 5.0.1, contributors could modify new comments made by users with greater privileges, possibly causing XSS.
CVSS3: 5.4
nvd
больше 6 лет назад
In WordPress before 4.9.9 and 5.x before 5.0.1, contributors could modify new comments made by users with greater privileges, possibly causing XSS.
CVSS3: 5.4
github
около 3 лет назад
In WordPress before 4.9.9 and 5.x before 5.0.1, contributors could modify new comments made by users with greater privileges, possibly causing XSS.