Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2017-17092 — Cross-site Scripting in Wordpress

CWE-79 — Cross-site Scripting5 documents5 sources

Severity

5.4MEDIUMNVD

EPSS

4.1%

top 11.46%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Wordpress Debian Wordpress Debian Linux

Timeline

PublishedDec 2

Latest updateMay 14

Description

wp-includes/functions.php in WordPress before 4.9.1 does not require the unfiltered_html capability for upload of .js files, which might allow remote attackers to conduct XSS attacks via a crafted file.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:NExploitability: 2.3 | Impact: 2.7

Affected Packages3 packages

▶debiandebian/wordpress< wordpress 4.9.1+dfsg-1 (bookworm)

▶NVDwordpress/wordpress< 4.9.1

▶Debianwordpress/wordpress< 4.9.1+dfsg-1+3

Also affects: Debian Linux 7.0, 8.0, 9.0

Patches

Patch: codex.wordpress.org ↗Patch: github.com ↗Patch: codex.wordpress.org ↗

🔴Vulnerability Details

GHSA

GHSA-256m-wxxh-gf6h: wp-includes/functions↗2022-05-14

▶

OSV

CVE-2017-17092: wp-includes/functions↗2017-12-02

▶

💥Exploits & PoCs

Nuclei

WordPress < 4.9.1 - Authenticated JavaScript File Upload

▶

📋Vendor Advisories

Debian

CVE-2017-17092: wordpress - wp-includes/functions.php in WordPress before 4.9.1 does not require the unfilte...↗2017

▶