Description
In WordPress before 4.7.3 (wp-admin/js/tags-box.js), there is cross-site scripting (XSS) via taxonomy term names.
Remediation
References
Related Vulnerabilities
PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-6207)
Joomla! Core 4.x.x Multiple Vulnerabilities (4.0.0 - 4.1.0)
MySQL CVE-2022-39400 Vulnerability (CVE-2022-39400)
Apache HTTP Server Numeric Errors Vulnerability (CVE-2003-1580)
WordPress Plugin Database for Contact Form 7, WPforms, Elementor forms Arbitrary File Upload (1.3.2)