vulnerability
FreeBSD: VID-a5bb7ea0-3e58-11e7-94a2-00e04c1ea73d: Wordpress -- multiple vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:N/AC:M/Au:N/C:P/I:P/A:N) | May 21, 2017 | May 23, 2017 | Dec 10, 2025 |
Severity
6
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:N)
Published
May 21, 2017
Added
May 23, 2017
Modified
Dec 10, 2025
Description
WordPress versions 4.7.4 and earlier are affected by six security issues Insufficient redirect validation in the HTTP class. Improper handling of post meta data values in the XML-RPC API. Lack of capability checks for post meta data in the XML-RPC API. A Cross Site Request Forgery (CRSF) vulnerability was discovered in the filesystem credentials dialog. A cross-site scripting (XSS) vulnerability was discovered related to the Customizer.
Solutions
freebsd-upgrade-package-wordpressfreebsd-upgrade-package-fr-wordpressfreebsd-upgrade-package-de-wordpressfreebsd-upgrade-package-ja-wordpressfreebsd-upgrade-package-ru-wordpressfreebsd-upgrade-package-zh-wordpress-zh_cnfreebsd-upgrade-package-zh-wordpress-zh_tw
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.