Description

The get_allowed_mime_types function in wp-includes/functions.php in WordPress before 3.6.1 does not require the unfiltered_html capability for uploads of .htm and .html files, which might make it easier for remote authenticated users to conduct cross-site scripting (XSS) attacks via a crafted file.

Remediation

References

CVE-2013-5738

Related Vulnerabilities

Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2949)

Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.8)

WordPress Plugin Related Posts Unspecified Vulnerability (5.12.69)

PHP Other Vulnerability (CVE-2005-1043)

MySQL CVE-2019-2531 Vulnerability (CVE-2019-2531)

Severity

Medium

Classification

CVE-2013-5738 CWE-20

Tags

Missing Update Known Vulnerabilities