Description
Cross-site scripting (XSS) vulnerability in wp-includes/wp-db.php in WordPress before 4.2.1 allows remote attackers to inject arbitrary web script or HTML via a long comment that is improperly stored because of limitations on the MySQL TEXT data type.
Remediation
References
Related Vulnerabilities
MySQL CVE-2021-35608 Vulnerability (CVE-2021-35608)
MySQL Other Vulnerability (CVE-2007-2692)
WordPress Plugin Simple Download Monitor Multiple Cross-Site Scripting Vulnerabilities (3.9.4)
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-32567)
WordPress Plugin BIC Media Widget Cross-Site Scripting (1.0)