[wp-trac] [WordPress Trac] #55082: Reporting a security Vulnerability to wordpress

WordPress Trac noreply at wordpress.org
Fri Feb 4 21:19:07 UTC 2022

#55082: Reporting a security Vulnerability to wordpress
 Reporter:  faizoo        |       Owner:  < Faizan Akhtar >
     Type:  defect (bug)  |      Status:  assigned
 Priority:  normal        |   Milestone:  Awaiting Review
Component:  Editor        |     Version:  5.9
 Severity:  normal        |  Resolution:
 Keywords:  needs-patch   |     Focuses:  javascript
Changes (by audrasjb):

 * component:  General => Editor
 * severity:  critical => normal


 Hello, welcome to WordPress Core Trac @faizoo and thank you for reporting
 this ticket,

 Let's remove the `critical` severity since the reported issue falls under
 this category:

 > Self-XSS issues within wp-admin requiring users with unfiltered_html
 capability. For example, script execution within /wp-admin as an
 administrator or editor on a single-site installation.

Ticket URL: <https://core.trac.wordpress.org/ticket/55082#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform

More information about the wp-trac mailing list