all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Unauthenticated Stored Cross-Site Scripting Vulnerability Patched in WordPress Core

Add to bookmarks
April 10, 2024, 5:05 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

WordPress 6.5.2 was released yesterday, on April 9, 2024. It included a single security patch, along with a handful of bug fixes. The security patch was for a Stored Cross-Site Scripting vulnerability that could be exploited by both unauthenticated users, when a comment block is present on a page, and by authenticated users who have access to the block editor such as contributors.


All Wordfence users are protected against exploits targeting this vulnerability through unauthenticated methods. Wordfence PremiumWordfence …

april block bug cross-site exploited fixes page patch scripting security security patch single unauthenticated vulnerability wordpress

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Wireshark 4.2.5 Released, (Sat, May 18th) 19 hours ago | malware.news
article bugs center cve +13
The who, where, and how of APT attacks – Week in security with Tony Anscombe 1 day, 6 hours ago | malware.news
apt article attacks campaigns +11
Leveling the cybersecurity playing field 1 day, 11 hours ago | malware.news
article blumira cybersecurity entry +4
Hardware cybersecurity leader, Flexxon, introduces Server Defender 1 day, 11 hours ago | malware.news
advanced article cybersecurity defender +8
Automated pentesting in the cloud 1 day, 11 hours ago | malware.news
article automated challenge cloud +10
How to revamp your cybersecurity in the middle of the chaos 1 day, 11 hours ago | malware.news
article attackers chaos cybersecurity +8
6K-plus AI models may be affected by critical RCE vulnerability 1 day, 12 hours ago | malware.news
ai models article attacks critical +14
Zscaler annual phishing report finds a near 60% increase in phishing attacks in 2023 1 day, 14 hours ago | malware.news
article attacks link media +6
Microsoft, North Korea, Santander, CISA, Deepfakes, Aaran Leyland & More - SWN #387 1 day, 15 hours ago | malware.news
amp article cisa deepfakes +8

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Technical Support Specialist (Cyber Security)

@ Sigma Software | Warsaw, Poland
View on infosec-jobs.com

OT Security Specialist

@ Adani Group | AHMEDABAD, GUJARAT, India
View on infosec-jobs.com

FS-EGRC-Manager-Cloud Security

@ EY | Bengaluru, KA, IN, 560048
View on infosec-jobs.com