WordPress XSS Vulnerability in Shortcode Processing

WordPress XSS Vulnerability in Shortcode Processing

CVE-2015-5714 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in WordPress before 4.3.1 allows remote attackers to inject arbitrary web script or HTML by leveraging the mishandling of unclosed HTML elements during processing of shortcode tags.

Learn more about our Wordpress Pen Testing.