5.4

CVE-2018-20149

Medienbericht

WordPress Core < 5.0.1 - Stored Cross-Site Scripting via File Uploads

In WordPress before 4.9.9 and 5.x before 5.0.1, when the Apache HTTP Server is used, authors could upload crafted files that bypass intended MIME type restrictions, leading to XSS, as demonstrated by a .jpg file without JPEG data.
Mögliche Gegenmaßnahme
WordPress: Update to one of the following versions, or a newer patched version: 3.7.28, 3.8.28, 3.9.26, 4.0.25, 4.1.25, 4.2.22, 4.3.18, 4.4.17, 4.5.16, 4.6.13, 4.7.12, 4.8.8, 4.9.9, 5.0.1
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
WordpressWordpress Version < 4.9.9
WordpressWordpress Version >= 5.0 < 5.0.1
DebianDebian Linux Version8.0
DebianDebian Linux Version9.0
Weitere Schwachstelleninformationen
SystemWordPress Core
Produkt WordPress
Version [*, 3.7)
Version 3.7-3.7.27
Version 3.8-3.8.27
Version 3.9-3.9.25
Version 4.0-4.0.24
Version 4.1-4.1.24
Version 4.2-4.2.21
Version 4.3-4.3.17
Version 4.4-4.4.16
Version 4.5-4.5.15
Version 4.6-4.6.12
Version 4.7-4.7.11
Version 4.8-4.8.7
Version 4.9-4.9.8
Version 5.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.44% 0.874
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.4 2.3 2.7
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
nvd@nist.gov 3.5 6.8 2.9
AV:N/AC:M/Au:S/C:N/I:P/A:N
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

http://www.securityfocus.com/bid/106220
Third Party Advisory
VDB Entry
https://codex.wordpress.org/Version_4.9.9
Vendor Advisory
Product
https://lists.debian.org/debian-lts-announce/2019/02/msg00019.html
Third Party Advisory
Mailing List
https://wordpress.org/news/2018/12/wordpress-5-0-1-security-release/
Vendor Advisory
Release Notes
https://wordpress.org/support/wordpress-version/version-5-0-1/
Vendor Advisory
Release Notes
https://www.debian.org/security/2019/dsa-4401
Third Party Advisory
https://www.zdnet.com/article/wordpress-plugs-bug-that-led-to-google-indexing-some-user-passwords/
Third Party Advisory
Press/Media Coverage
https://github.com/WordPress/WordPress/commit/246a70bdbfac3bd45ff71c7941deef1bb206b19a
Patch
Third Party Advisory
https://wpvulndb.com/vulnerabilities/9175
Vendor Advisory
https://www.wordfence.com/threat-intel/vulnerabilities/id/4df635b8-4c56-4b24-8446-8e39e6fe7441
Third Party Advisory