Security News > 2017 > March > WordPress REST API Bug Could Be Used in Stored XSS Attacks (Threatpost)

WordPress REST API Bug Could Be Used in Stored XSS Attacks (Threatpost)

2017-03-14 15:43

The recently patched REST API Endpoint vulnerability in WordPress could be leveraged to pull off stored cross-site scripting attacks.

News URL

http://threatpost.com/wordpress-rest-api-bug-could-be-used-in-stored-xss-attacks/124294/

#API #attack #threatpost #wordpress #XSS

Related news

Xeon Sender Tool Exploits Cloud APIs for Large-Scale SMS Phishing Attacks (source)
Litespeed Cache bug exposes millions of WordPress sites to takeover attacks (source)
LiteSpeed Cache bug exposes 6 million WordPress sites to takeover attacks (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Wordpress		49	36	409	104	29	578

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.