vulnerability
FreeBSD: VID-a2589511-d6ba-11e7-88dd-00e04c1ea73d: wordpress -- multiple issues
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:S/C:P/I:C/A:N) | Dec 1, 2017 | Dec 2, 2017 | Dec 10, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:S/C:P/I:C/A:N)
Published
Dec 1, 2017
Added
Dec 2, 2017
Modified
Dec 10, 2025
Description
wordpress developers reports: Use a properly generated hash for the newbloguser key instead of a determinate substring. Add escaping to the language attributes used on html elements. Ensure the attributes of enclosures are correctly escaped in RSS and Atom feeds. Remove the ability to upload JavaScript files for users who do not have the unfiltered_html capability.
Solutions
freebsd-upgrade-package-wordpressfreebsd-upgrade-package-fr-wordpressfreebsd-upgrade-package-de-wordpressfreebsd-upgrade-package-ja-wordpressfreebsd-upgrade-package-ru-wordpressfreebsd-upgrade-package-zh-wordpress-zh_cnfreebsd-upgrade-package-zh-wordpress-zh_tw
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.