Description
Cross-site scripting (XSS) vulnerability in WordPress before 4.3.1 allows remote attackers to inject arbitrary web script or HTML by leveraging the mishandling of unclosed HTML elements during processing of shortcode tags.
Remediation
References
Related Vulnerabilities
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-31549)
MySQL CVE-2018-2755 Vulnerability (CVE-2018-2755)
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-4390)
ReviveAdserver Session Fixation Vulnerability (CVE-2016-9125)
WordPress Plugin Instant Images-One Click Unsplash Uploads Cross-Site Scripting (4.4.0)