Description
Cross-site scripting (XSS) vulnerability in Press This in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
Related Vulnerabilities
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-0046)
Collabtive Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2015-0258)
Oracle JRE CVE-2018-2794 Vulnerability (CVE-2018-2794)
Drupal Exposure of Resource to Wrong Sphere Vulnerability (CVE-2020-13670)