Описание
Cross-site scripting (XSS) vulnerability in WordPress before 4.3.1 allows remote attackers to inject arbitrary web script or HTML by leveraging the mishandling of unclosed HTML elements during processing of shortcode tags.
Релиз | Статус | Примечание |
---|---|---|
artful | ignored | end of life |
bionic | not-affected | 4.3.1+dfsg-1 |
cosmic | not-affected | 4.3.1+dfsg-1 |
devel | not-affected | 4.3.1+dfsg-1 |
disco | not-affected | 4.3.1+dfsg-1 |
esm-apps/bionic | not-affected | 4.3.1+dfsg-1 |
esm-apps/xenial | not-affected | 4.3.1+dfsg-1 |
esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needed] |
precise | ignored | end of life |
precise/esm | DNE | precise was needs-triage |
Показывать по
EPSS
4.3 Medium
CVSS2
6.1 Medium
CVSS3
Связанные уязвимости
Cross-site scripting (XSS) vulnerability in WordPress before 4.3.1 allows remote attackers to inject arbitrary web script or HTML by leveraging the mishandling of unclosed HTML elements during processing of shortcode tags.
Cross-site scripting (XSS) vulnerability in WordPress before 4.3.1 all ...
Cross-site scripting (XSS) vulnerability in WordPress before 4.3.1 allows remote attackers to inject arbitrary web script or HTML by leveraging the mishandling of unclosed HTML elements during processing of shortcode tags.
EPSS
4.3 Medium
CVSS2
6.1 Medium
CVSS3