WordPress Stored Cross-Site Scripting (XSS) Vulnerability
Publish Date: 09 juin 2016
Gravité: : Critique
Date du conseil: 09 juin 2016
Description
A vulnerability was reported in WordPress and a remote user can conduct cross-site scripting attacks. The system does not properly filter HTML code from user-supplied input in Comments before displaying the input. A remote user can submit a specially crafted and long comment that, when viewed by a target user, will cause arbitrary scripting code to be executed by the target user's browser.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1000552