EPSS
Percentile
74.9%
wordpress is vulnerable to cross-site scripting (XSS). The vulnerability is possible due to the input of malicious URL for certain use cases involving plugins.
github.com/WordPress/WordPress/commit/fb3c6ea0618fcb9a51d4f2c1940e9efcd4a2d460
wordpress.org/news/2018/12/wordpress-5-0-1-security-release/