Wordpress 4.7.1
Low
N
Nextcloud
Submitted None
Actions:
Reported by
rbcafe
Vulnerability Details
Technical details and impact analysis
Greetings,
I observed that your website https://nextcloud.com still use wordpress 4.7.1
[+] WordPress version 4.7.1 (Released on 2017-01-11) identified from advanced fingerprinting
This version of wordpress is vulnerable to :
----
- WP_Query SQLi injection
- (XSS) vulnerability was in the posts list table
Fix :
----
- Upgrade to wordpress 4.7.2
- More information : https://wordpress.org/news/2017/01/wordpress-4-7-2-security-release/
Best regards
Rbcafe
Report Details
Additional information and metadata
State
Closed
Substate
Resolved