← voltar
CVE-2017-5612

CVE-2017-5612

EPSS 2.9%
Cross-site scripting (XSS) vulnerability in wp-admin/includes/class-wp-posts-list-table.php in the posts list table in WordPress before 4.7.2 allows remote attackers to inject arbitrary web script or HTML via a crafted excerpt.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://codex.wordpress.org/Version_4.7.2https://github.com/WordPress/WordPress/commit/4482f9207027de8f36630737ae085110896ea849https://wordpress.org/news/2017/01/wordpress-4-7-2-security-release/https://wpvulndb.com/vulnerabilities/8731http://www.debian.org/security/2017/dsa-3779http://www.openwall.com/lists/oss-security/2017/01/28/5http://www.securityfocus.com/bid/95816http://www.securitytracker.com/id/1037731