WordPress — свободно распространяемая система управления содержимым сайта с открытым исходным кодом.

Релизный цикл, информация об уязвимостях

Продукт: WordPress

Вендор: Wordpress

График релизов

Недавние уязвимости WordPress

Количество 1 896

CVE-2017-14720

около 8 лет назад

Before version 4.8.2, WordPress allowed a Cross-Site scripting attack in the template list view via a crafted template name.

CVSS3: 6.1

EPSS: Низкий

CVE-2017-14720

около 8 лет назад

Before version 4.8.2, WordPress allowed a Cross-Site scripting attack ...

CVSS3: 6.1

EPSS: Низкий

CVE-2017-14719

около 8 лет назад

Before version 4.8.2, WordPress was vulnerable to a directory traversal attack during unzip operations in the ZipArchive and PclZip components.

CVSS3: 7.5

EPSS: Средний

CVE-2017-14719

около 8 лет назад

Before version 4.8.2, WordPress was vulnerable to a directory traversa ...

CVSS3: 7.5

EPSS: Средний

CVE-2017-14718

около 8 лет назад

Before version 4.8.2, WordPress was susceptible to a Cross-Site Scripting attack in the link modal via a javascript: or data: URL.

CVSS3: 6.1

EPSS: Низкий

CVE-2017-14718

около 8 лет назад

Before version 4.8.2, WordPress was susceptible to a Cross-Site Script ...

CVSS3: 6.1

EPSS: Низкий

CVE-2017-14724

около 8 лет назад

Before version 4.8.2, WordPress was vulnerable to cross-site scripting in oEmbed discovery.

CVSS3: 6.1

EPSS: Низкий

CVE-2017-14726

около 8 лет назад

Before version 4.8.2, WordPress was vulnerable to a cross-site scripting attack via shortcodes in the TinyMCE visual editor.

CVSS3: 6.1

EPSS: Низкий

CVE-2017-14718

около 8 лет назад

Before version 4.8.2, WordPress was susceptible to a Cross-Site Scripting attack in the link modal via a javascript: or data: URL.

CVSS3: 6.1

EPSS: Низкий

CVE-2017-14719

около 8 лет назад

Before version 4.8.2, WordPress was vulnerable to a directory traversal attack during unzip operations in the ZipArchive and PclZip components.

CVSS3: 7.5

EPSS: Средний

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2017-14720 Before version 4.8.2, WordPress allowed a Cross-Site scripting attack in the template list view via a crafted template name.	CVSS3: 6.1	3% Низкий	около 8 лет назад
CVE-2017-14720 Before version 4.8.2, WordPress allowed a Cross-Site scripting attack ...	CVSS3: 6.1	3% Низкий	около 8 лет назад
CVE-2017-14719 Before version 4.8.2, WordPress was vulnerable to a directory traversal attack during unzip operations in the ZipArchive and PclZip components.	CVSS3: 7.5	51% Средний	около 8 лет назад
CVE-2017-14719 Before version 4.8.2, WordPress was vulnerable to a directory traversa ...	CVSS3: 7.5	51% Средний	около 8 лет назад
CVE-2017-14718 Before version 4.8.2, WordPress was susceptible to a Cross-Site Scripting attack in the link modal via a javascript: or data: URL.	CVSS3: 6.1	3% Низкий	около 8 лет назад
CVE-2017-14718 Before version 4.8.2, WordPress was susceptible to a Cross-Site Script ...	CVSS3: 6.1	3% Низкий	около 8 лет назад
CVE-2017-14724 Before version 4.8.2, WordPress was vulnerable to cross-site scripting in oEmbed discovery.	CVSS3: 6.1	8% Низкий	около 8 лет назад
CVE-2017-14726 Before version 4.8.2, WordPress was vulnerable to a cross-site scripting attack via shortcodes in the TinyMCE visual editor.	CVSS3: 6.1	5% Низкий	около 8 лет назад
CVE-2017-14718 Before version 4.8.2, WordPress was susceptible to a Cross-Site Scripting attack in the link modal via a javascript: or data: URL.	CVSS3: 6.1	3% Низкий	около 8 лет назад
CVE-2017-14719 Before version 4.8.2, WordPress was vulnerable to a directory traversal attack during unzip operations in the ZipArchive and PclZip components.	CVSS3: 7.5	51% Средний	около 8 лет назад

Уязвимостей на страницу