Description
In WordPress before 4.7.5, there is improper handling of post meta data values in the XML-RPC API.
Remediation
References
Related Vulnerabilities
WordPress Plugin Code Snippets Cross-Site Scripting (2.6.1)
WordPress Plugin Accept Donations with PayPal Cross-Site Request Forgery (1.3)
WebLogic CVE-2021-1995 Vulnerability (CVE-2021-1995)
PHP-Fusion URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-23182)
WordPress Plugin Wordspew 'id' Parameter SQL Injection (1.16)