[wp-trac] [WordPress Trac] #53020: Stored XSS via «View details» plugin iFrame
WordPress Trac
noreply at wordpress.org
Mon Apr 12 13:22:18 UTC 2021
#53020: Stored XSS via «View details» plugin iFrame
--------------------------+------------------------------
Reporter: m0ze | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Security | Version: trunk
Severity: normal | Resolution:
Keywords: needs-patch | Focuses: administration
--------------------------+------------------------------
Comment (by ayeshrajans):
Thanks for the report @m0ze. Not without some tinkering, but I could
reproduce this issue, and I think it's really we ought to fix.
Please note that we don't use Trac to report/triage security issue. Please
see [https://github.com/WordPress/wordpress-
develop/blob/master/SECURITY.md SECURITY.md] with full details on how to
report a security vulnerability.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/53020#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list