exploitDog

GHSA-vfq5-r47g-jgp7

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site scripting (XSS) vulnerability in the legacy theme preview implementation in wp-includes/theme.php in WordPress before 4.2.4 allows remote attackers to inject arbitrary web script or HTML via a crafted string.

Cross-site scripting (XSS) vulnerability in the legacy theme preview implementation in wp-includes/theme.php in WordPress before 4.2.4 allows remote attackers to inject arbitrary web script or HTML via a crafted string.

Ссылки

EPSS

Процентиль: 87%

0.03446

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2015-5734

ubuntu

больше 9 лет назад

Cross-site scripting (XSS) vulnerability in the legacy theme preview implementation in wp-includes/theme.php in WordPress before 4.2.4 allows remote attackers to inject arbitrary web script or HTML via a crafted string.

CVE-2015-5734

nvd

больше 9 лет назад

Cross-site scripting (XSS) vulnerability in the legacy theme preview implementation in wp-includes/theme.php in WordPress before 4.2.4 allows remote attackers to inject arbitrary web script or HTML via a crafted string.

CVE-2015-5734

debian

больше 9 лет назад

Cross-site scripting (XSS) vulnerability in the legacy theme preview i ...

EPSS

Процентиль: 87%

0.03446

Низкий

CVE ID

Дефекты

CWE-79