mirror of
https://github.com/0xMarcio/cve.git
synced 2026-04-21 09:56:14 +02:00
0xMarcio
842 B
842 B
CVE-2017-5612
Description
Cross-site scripting (XSS) vulnerability in wp-admin/includes/class-wp-posts-list-table.php in the posts list table in WordPress before 4.7.2 allows remote attackers to inject arbitrary web script or HTML via a crafted excerpt.
POC
Reference
- https://github.com/WordPress/WordPress/commit/4482f9207027de8f36630737ae085110896ea849
- https://wpvulndb.com/vulnerabilities/8731