Description WordPress before 5.2.3 allows XSS in shortcode previews. Remediation References CVE-2019-16219 Related Vulnerabilities Plone CMS Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2012-5507) WordPress Plugin Lightbox Jquery Possible Remote Code Execution (0.24) XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2020-15252) Python Numeric Errors Vulnerability (CVE-2008-2316) WordPress Plugin WP Google Maps SQL Injection (7.11.17) Severity Medium Classification CVE-2019-16219 CWE-707 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities