Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2018-5776

Published: 18/01/2018 Updated: 01/02/2018
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8
VMScore: 385
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Wordpress

Vulnerability Summary

WordPress prior to 4.9.2 has XSS in the Flash fallback files in MediaElement (under wp-includes/js/mediaelement).

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

wordpress wordpress

Vendor Advisories

Debian CVElist Bug Report Logs: wordpress: CVE-2018-5776: XSS vulnerability in MediaElement
Debian Bug report logs - #887596 wordpress: CVE-2018-5776: XSS vulnerability in MediaElement Package: src:wordpress; Maintainer for src:wordpress is Craig Small <csmall@debianorg>; Reported by: Craig Small <csmall@debianorg> Date: Thu, 18 Jan 2018 10:45:04 UTC Severity: grave Tags: fixed-upstream, security, upstrea ...

References

CWE-79https://wordpress.org/news/2018/01/wordpress-4-9-2-security-and-maintenance-release/https://github.com/WordPress/WordPress/commit/3fe9cb61ee71fcfadb5e002399296fcc1198d850https://codex.wordpress.org/Version_4.9.2https://wpvulndb.com/vulnerabilities/9006https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=887596https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661open redirectCVE-2024-25512CVE-2024-33788command injectionSSTICVE-2024-0043CVE-2024-29210CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook