WordPress Core versions 5.9 to 5.9.1 have a security vulnerability that can allow attackers to store malicious code on the website. This malicious code can be set in the ‘isGlobalStylesUserThemeJSON’ parameter on the post editor. This code can then be used to cause harm to the website.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
