Security News > 2015 > July > WordPress Patches Critical XSS Vulnerability in All Builds (Threatpost)

WordPress Patches Critical XSS Vulnerability in All Builds (Threatpost)

2015-07-23 17:08

WordPress rolled out a new version of its content management system this morning that addresses a nasty cross-site scripting (XSS) vulnerability that could ultimately lead to site compromise.

News URL

http://threatpost.com/wordpress-patches-critical-xss-vulnerability-in-all-builds/113916

#wordpress #XSS #critical #vulnerability #threatpost

Related news

Critical SailPoint IdentityIQ Vulnerability Exposes Files to Unauthorized Access (source)
Veeam Issues Patch for Critical RCE Vulnerability in Service Provider Console (source)
PoC exploit for critical WhatsUp Gold RCE vulnerability released (CVE-2024-8785) (source)
Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection (source)
BeyondTrust Issues Urgent Patch for Critical Vulnerability in PRA and RS Products (source)
BeyondTrust fixes critical vulnerability in remote access, support solutions (CVE-2024-12356) (source)
Hackers Exploiting Critical Fortinet EMS Vulnerability to Deploy Remote Access Tools (source)
Premium WPLMS WordPress plugins address seven critical flaws (source)
Critical SQL Injection Vulnerability in Apache Traffic Control Rated 9.9 CVSS — Patch Now (source)
Unpatched critical flaws impact Fancy Product Designer WordPress plugin (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Wordpress		7	2	93	44	18	157

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.