Vulnerabilities > Wordpress > Wordpress > 4.3.10
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2016-05-22 | CVE-2016-1564 | Cross-site Scripting vulnerability in Wordpress Multiple cross-site scripting (XSS) vulnerabilities in wp-includes/class-wp-theme.php in WordPress before 4.4.1 allow remote attackers to inject arbitrary web script or HTML via a (1) stylesheet name or (2) template name to wp-admin/customize.php. | 4.3 |