[wp-trac] [WordPress Trac] #53138: Cross site scripting (XSS) found in the edit post functionality of admin panel WP 5.7.1

WordPress Trac noreply at wordpress.org
Mon May 3 12:46:50 UTC 2021


#53138: Cross site scripting (XSS) found in the edit post functionality of admin
panel WP 5.7.1
--------------------------+------------------------------
 Reporter:  ashishc1878   |       Owner:  (none)
     Type:  defect (bug)  |      Status:  new
 Priority:  normal        |   Milestone:  Awaiting Review
Component:  Security      |     Version:  5.7.1
 Severity:  major         |  Resolution:
 Keywords:                |     Focuses:  administration
--------------------------+------------------------------

Comment (by Clorith):

 Hi there, and welcome to the WordPress trac.

 As indicated when creating a ticket here, please do not post about
 potential security vulnerabilities on the public tracking software, you
 should instead be using our [https://hackerone.com/wordpress HackerOne
 project page] for responsible disclosure.

 See also https://make.wordpress.org/core/handbook/testing/reporting-
 security-vulnerabilities/

 In relation to this, the ticket will be removed after this reply, and we
 look forward to hearing from you on the HackerOne page if applicable.

-- 
Ticket URL: <https://core.trac.wordpress.org/ticket/53138#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform


More information about the wp-trac mailing list