Lucene search
Ubuntu.comUB:CVE-2015-3429HistoryJun 17, 2015 - 12:00 a.m.
CVE-2015-3429
2015-06-1700:00:00
ubuntu.com
ubuntu.com
14
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
74.9%
Cross-site scripting (XSS) vulnerability in example.html in Genericons
before 3.3.1, as used in WordPress before 4.2.2, allows remote attackers to
inject arbitrary web script or HTML via a fragment identifier.
Bugs
Notes
| Author | Note |
|---|---|
| msalvatore | When fixing this, it’s important to remove all of the genericons/example.html files |
References
Related
patchstack
patchstack
WordPress Genericons Plugin <= 4.2.1 - XSS
2015-04-27 00:00:00
nvd
nvd
CVE-2015-3429
2015-06-17 18:59:03
checkpoint_advisories
checkpoint_advisories
WordPress Genericons Cross-Site Scripting (CVE-2015-3429)
2016-03-10 00:00:00
cve
cve
CVE-2015-3429
2015-06-17 18:59:03
thn
thn
WordPress Vulnerability Puts Millions of Websites At Risk
2015-05-06 23:58:00
debiancve
debiancve
CVE-2015-3429
2015-06-17 18:59:03
wpexploit
wpexploit
Twenty Fifteen Theme <= 1.1 - DOM Cross-Site Scripting (XSS)
2015-05-06 00:00:00
cvelist
cvelist
CVE-2015-3429
2015-06-17 18:00:00
prion
prion
Cross site scripting
2015-06-17 18:59:00
securityvulns
securityvulns
Wordpress Twenty Fifteen Theme - DOM XSS Vulnerability - CVE-2015-3429
2015-05-11 00:00:00
[SECURITY] [DSA 3328-1] wordpress security update
2015-08-24 00:00:00
packetstorm
packetstorm
WordPress Twenty Fifteen 4.2.1 Cross Site Scripting
2015-05-07 00:00:00
wpvulndb
wpvulndb
Twenty Fifteen Theme <= 1.1 - DOM Cross-Site Scripting (XSS)
2015-05-06 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-3328-1)
2015-08-03 00:00:00
Debian Security Advisory DSA 3328-1 (wordpress - security update)
2015-08-04 00:00:00
nessus
nessus
Debian DSA-3328-1 : wordpress - security update
2015-08-13 00:00:00
Fedora 21 : wordpress-4.2.2-1.fc21 (2015-6808)
2015-05-21 00:00:00
Fedora 20 : wordpress-4.2.2-1.fc20 (2015-6790)
2015-05-21 00:00:00
debian
debian
[SECURITY] [DSA 3328-1] wordpress security update
2015-08-04 06:51:55
[SECURITY] [DSA 3328-2] wordpress regression update
2015-08-04 15:36:24
osv
osv
wordpress - security update
2015-08-04 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
74.9%
Related for UB:CVE-2015-3429