[wp-trac] [WordPress Trac] #53020: Stored XSS via «View details» plugin iFrame
WordPress Trac
noreply at wordpress.org
Fri May 7 13:33:48 UTC 2021
#53020: Stored XSS via «View details» plugin iFrame
--------------------------+-----------------------------
Reporter: m0ze | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: 5.8
Component: Security | Version: trunk
Severity: normal | Resolution:
Keywords: has-patch | Focuses: administration
--------------------------+-----------------------------
Changes (by bmcculley):
* keywords: needs-patch => has-patch
Comment:
I wanted to note that in order to test this, if using the Hello Dolly
plugin. It must first be deleted and then reinstalled so that the
`newer_installed` case will be reached. If the one that comes by default
is used it will only go to `install`.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/53020#comment:5>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list