EPSS
Percentile
41.0%
According to WordPress: “Tim Coen and Slavco discovered that authors on Apache-hosted sites could upload specifically crafted files that bypass MIME verification, leading to a cross-site scripting vulnerability.”
github.com/WordPress/WordPress/commit/246a70bdbfac3bd45ff71c7941deef1bb206b19a
wordpress.org/news/2018/12/wordpress-5-0-1-security-release/