WordPress Core, in versions up to 6.0.2, has a security vulnerability that could allow users with specific access to the WordPress post and page editor, such as Authors, Contributors, and Editors, to inject malicious web scripts into posts and pages. If these posts and pages are viewed by other users, the malicious scripts could be executed, potentially causing harm.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
