Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

MediaElements XSS

High
W
WordPress
Submitted None

Team Summary

Official summary from WordPress

The reporter disclosed a reflected XSS vulnerability in MediaElement's Flash files, which are bundled in WordPress. MediaElement and WordPress released versions 4.2.8 and 4.9.2, respectively, which resolve the issue.

Actions:
View on HackerOne
Reported by shay12tg

Report Details

Additional information and metadata

State

Closed

Substate

Resolved

Submitted

Weakness

Cross-site Scripting (XSS) - Reflected