[wp-trac] [WordPress Trac] #53819: Atack XSS
WordPress Trac
noreply at wordpress.org
Wed Jul 28 20:27:23 UTC 2021
#53819: Atack XSS
-------------------------+-----------------------------
Reporter: michal1994 | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: General | Version: 5.8
Severity: normal | Keywords:
Focuses: javascript |
-------------------------+-----------------------------
Hello, I am a programmer with little experience but a lot of passion and I
was looking for a problem on the Internet, but I found nothing.
The problem is adding comments as an administrator, then it is possible to
add the <script> code the same after installing woocommerce plugin and
commenting on products, is it really supposed to work like this? The
script is added to the page and runs on every refresh.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/53819>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list