Download
| Alert*
oval:org.secpod.oval:def:1900431
In WordPress before 4.7.5, there is a lack of capability checks for post meta data in the XML-RPC API. oval:org.secpod.oval:def:602918 Several vulnerabilities were discovered in wordpress, a web blogging tool. They would allow remote attackers to force password resets, and perform various cross-site scripting and cross-site request forgery attacks. |