WordPress Stored Cross-Site Scripting (XSS) Vulnerability
Severity: CRITICAL
Advisory Date: JUN 09, 2016
DESCRIPTION
A vulnerability was reported in WordPress and a remote user can conduct cross-site scripting attacks. The system does not properly filter HTML code from user-supplied input in Comments before displaying the input. A remote user can submit a specially crafted and long comment that, when viewed by a target user, will cause arbitrary scripting code to be executed by the target user's browser.
TREND MICRO PROTECTION INFORMATION
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1000552