Security News > 2017 > March > WordPress REST API Bug Could Be Used in Stored XSS Attacks (Threatpost)

WordPress REST API Bug Could Be Used in Stored XSS Attacks (Threatpost)

2017-03-14 15:43

The recently patched REST API Endpoint vulnerability in WordPress could be leveraged to pull off stored cross-site scripting attacks.

News URL

http://threatpost.com/wordpress-rest-api-bug-could-be-used-in-stored-xss-attacks/124294/

#API #attack #threatpost #wordpress #XSS

Related news

WordPress LiteSpeed Cache Plugin Security Flaw Exposes Sites to XSS Attacks (source)
New Cryptojacking Attack Targets Docker API to Create Malicious Swarm Botnet (source)
Vulnerable APIs and Bot Attacks Costing Businesses Up to $186 Billion Annually (source)
Cybercriminals Exploiting Docker API Servers for SRBMiner Crypto Mining Attacks (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Wordpress		7	2	95	44	18	159

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.