CVE-2018-10101
Description
Before WordPress 4.9.5, the URL validator assumed URLs with the hostname localhost were on the same host as the WordPress server.
Risk Information
Base Score
6.1
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS Score
Exploitation Probability
9.391
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Update wordpress 4.9.4 to latest version | Windows |
| wordpress security update(DSA-4193-1) wordpress_4.7.5+dfsg-2+deb9u3_all.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234