| Added |
CPE Configuration |
|
OR
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 3.7 up to (excluding) 3.7.34
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 3.8 up to (excluding) 3.8.34
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 3.9 up to (excluding) 3.9.32
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 4.0 up to (excluding) 4.0.31
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 4.1 up to (excluding) 4.1.31
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 4.2 up to (excluding) 4.2.28
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 4.3 up to (excluding) 4.3.24
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 4.4 up to (excluding) 4.4.23
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 4.5 up to (excluding) 4.5.22
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 4.6 up to (excluding) 4.6.19
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 4.7 up to (excluding) 4.7.18
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 4.8 up to (excluding) 4.8.14
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 4.9 up to (excluding) 4.9.15
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 5.0 up to (excluding) 5.0.10
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 5.1 up to (excluding) 5.1.6
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 5.2 up to (excluding) 5.2.7
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 5.3.0 up to (excluding) 5.3.4
*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* versions from (including) 5.4 up to (excluding) 5.4.2
|
| Added |
CVSS V2 |
|
NIST (AV:N/AC:M/Au:S/C:P/I:P/A:N)
|
| Added |
CVSS V2 Metadata |
|
Victim must voluntarily interact with attack mechanism
|
| Added |
CVSS V3.1 |
|
NIST AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N
|
| Changed |
Reference Type |
https://github.com/WordPress/wordpress-develop/commit/6ef777e9a022bee2a80fa671118e7e2657e52693 No Types Assigned
|
https://github.com/WordPress/wordpress-develop/commit/6ef777e9a022bee2a80fa671118e7e2657e52693 Patch, Third Party Advisory
|
| Changed |
Reference Type |
https://github.com/WordPress/wordpress-develop/security/advisories/GHSA-q6pw-gvf4-5fj5 No Types Assigned
|
https://github.com/WordPress/wordpress-develop/security/advisories/GHSA-q6pw-gvf4-5fj5 Third Party Advisory
|
| Changed |
Reference Type |
https://wordpress.org/news/2020/06/wordpress-5-4-2-security-and-maintenance-release/ No Types Assigned
|
https://wordpress.org/news/2020/06/wordpress-5-4-2-security-and-maintenance-release/ Vendor Advisory
|
) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
