Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-9061

Опубликовано: 18 мая 2017
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3
CVSS3: 6.1

Описание

In WordPress before 4.7.5, a cross-site scripting (XSS) vulnerability exists when attempting to upload very large files, because the error message does not properly restrict presentation of the filename.

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

4.9.5+dfsg1-1
cosmic

not-affected

4.9.5+dfsg1-1
devel

not-affected

4.9.5+dfsg1-1
disco

not-affected

4.9.5+dfsg1-1
eoan

not-affected

4.9.5+dfsg1-1
esm-apps/bionic

not-affected

4.9.5+dfsg1-1
esm-apps/focal

not-affected

4.9.5+dfsg1-1
esm-apps/jammy

not-affected

4.9.5+dfsg1-1
esm-apps/noble

not-affected

4.9.5+dfsg1-1

Показывать по

EPSS

Процентиль: 86%
0.02952
Низкий

4.3 Medium

CVSS2

6.1 Medium

CVSS3

Связанные уязвимости

CVSS3: 6.1
nvd
около 8 лет назад

In WordPress before 4.7.5, a cross-site scripting (XSS) vulnerability exists when attempting to upload very large files, because the error message does not properly restrict presentation of the filename.

CVSS3: 6.1
debian
около 8 лет назад

In WordPress before 4.7.5, a cross-site scripting (XSS) vulnerability ...

CVSS3: 6.1
github
около 3 лет назад

In WordPress before 4.7.5, a cross-site scripting (XSS) vulnerability exists when attempting to upload very large files, because the error message does not properly restrict presentation of the filename.

EPSS

Процентиль: 86%
0.02952
Низкий

4.3 Medium

CVSS2

6.1 Medium

CVSS3