Description
Cross-site scripting (XSS) vulnerability in the user list table in WordPress before 4.3.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted e-mail address, a different vulnerability than CVE-2015-5714.
Remediation
References
Related Vulnerabilities
WordPress Plugin Download from files Arbitrary File Upload (1.48)
Oracle Database Server CVE-2010-0870 Vulnerability (CVE-2010-0870)
Oracle JRE CVE-2013-1476 Vulnerability (CVE-2013-1476)
MediaWiki Improper Input Validation Vulnerability (CVE-2014-5243)
WordPress Plugin All in One Webmaster Unspecified Vulnerability (11.0)