Automattic Wordpress vulnerabilities
2 known vulnerabilities affecting automattic/wordpress.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2024-31111MEDIUMCVSS 6.5≥ 6.5, ≤ 6.5.4≥ 6.4, ≤ 6.4.4+5 more2024-06-25
CVE-2024-31111 [MEDIUM] CWE-79 CVE-2024-31111: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Automattic WordPress allows Stored XSS.This issue affects WordPress: from 6.5 through 6.5.4, from 6.4 through 6.4.4, from 6.3 through 6.3.4, from 6.2 through 6.2.5, from 6.1 through 6.1.6, from 6.0 through 6.0.8, from 5.9 through 5.9.9.
nvd
CVE-2024-32111MEDIUMCVSS 5.0≥ 6.5, ≤ 6.5.4≥ 6.4, ≤ 6.4.4+23 more2024-06-25
CVE-2024-32111 [MEDIUM] CWE-22 CVE-2024-32111: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Auto
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Automattic WordPress allows Relative Path Traversal.This issue affects WordPress: from 6.5 through 6.5.4, from 6.4 through 6.4.4, from 6.3 through 6.3.4, from 6.2 through 6.2.5, from 6.1 through 6.1.6, from 6.0 through 6.0.8, from 5.9 through 5.9.9, from 5
nvd