EPSS
Percentile
41.7%
Props to Simon Scannell of RIPS Technologies for finding an issue where set-screen-option can be misused by plugins leading to privilege escalation.
github.com/WordPress/wordpress-develop/security/advisories/GHSA-4vpv-fgg2-gcqc
github.com/WordPress/WordPress/commit/dda0ccdd18f6532481406cabede19ae2ed1f575d
wordpress.org/news/2020/06/wordpress-5-4-2-security-and-maintenance-release/