[wp-trac] [WordPress Trac] #55082: Reporting a security Vulnerability to wordpress
WordPress Trac
noreply at wordpress.org
Fri Feb 4 21:19:07 UTC 2022
#55082: Reporting a security Vulnerability to wordpress
--------------------------+--------------------------------
Reporter: faizoo | Owner: < Faizan Akhtar >
Type: defect (bug) | Status: assigned
Priority: normal | Milestone: Awaiting Review
Component: Editor | Version: 5.9
Severity: normal | Resolution:
Keywords: needs-patch | Focuses: javascript
--------------------------+--------------------------------
Changes (by audrasjb):
* component: General => Editor
* severity: critical => normal
Comment:
Hello, welcome to WordPress Core Trac @faizoo and thank you for reporting
this ticket,
Let's remove the `critical` severity since the reported issue falls under
this category:
> Self-XSS issues within wp-admin requiring users with unfiltered_html
capability. For example, script execution within /wp-admin as an
administrator or editor on a single-site installation.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/55082#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list