Description
In WordPress before 4.7.3 (wp-admin/js/tags-box.js), there is cross-site scripting (XSS) via taxonomy term names.
Remediation
References
Related Vulnerabilities
ownCloud Cryptographic Issues Vulnerability (CVE-2013-1941)
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2047)
OpenSSL Resource Management Errors Vulnerability (CVE-2014-3507)
WordPress Plugin JS Support Ticket Unspecified Vulnerability (1.1.1)
WordPress Plugin WP Reactions Lite Cross-Site Scripting (1.3.5)