CVE-2017-5610
wp-admin/includes/class-wp-press-this.php in Press This in WordPress before 4.7.2 does not properly restrict visibility of a taxonomy-assignment user interface, which allows remote attackers to bypass intended access restrictions by reading terms.Enginsight
Vendor | Product | Version |
---|---|---|
wordpress | wordpress | 𝑥 ≤ 4.7.1 |
debian | debian_linux | 8.0 |
debian | debian_linux | 9.0 |
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
wordpress |
|
Common Weakness Enumeration