Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2015-3440

Опубликовано: 03 авг. 2015
Источник: ubuntu
Приоритет: high
EPSS Средний
CVSS2: 4.3

Описание

Cross-site scripting (XSS) vulnerability in wp-includes/wp-db.php in WordPress before 4.2.1 allows remote attackers to inject arbitrary web script or HTML via a long comment that is improperly stored because of limitations on the MySQL TEXT data type.

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

4.2.1+dfsg-1
cosmic

not-affected

4.2.1+dfsg-1
devel

not-affected

4.2.1+dfsg-1
disco

not-affected

4.2.1+dfsg-1
esm-apps/bionic

not-affected

4.2.1+dfsg-1
esm-apps/xenial

not-affected

4.2.1+dfsg-1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needed]
lucid

ignored

end of life
precise

ignored

end of life

Показывать по

Ссылки на источники

EPSS

Процентиль: 93%
0.10329
Средний

4.3 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2015-3440

nvd
почти 10 лет назад

Cross-site scripting (XSS) vulnerability in wp-includes/wp-db.php in WordPress before 4.2.1 allows remote attackers to inject arbitrary web script or HTML via a long comment that is improperly stored because of limitations on the MySQL TEXT data type.

debian логотип

CVE-2015-3440

debian
почти 10 лет назад

Cross-site scripting (XSS) vulnerability in wp-includes/wp-db.php in W ...

github логотип

GHSA-xg6f-394q-j4f9

github
около 3 лет назад

Cross-site scripting (XSS) vulnerability in wp-includes/wp-db.php in WordPress before 4.2.1 allows remote attackers to inject arbitrary web script or HTML via a long comment that is improperly stored because of limitations on the MySQL TEXT data type.

EPSS

Процентиль: 93%
0.10329
Средний

4.3 Medium

CVSS2