EPSS
Percentile
73.1%
A cross-site scripting (XSS) vulnerability was discovered in the visual editor. Reported by Rodolfo Assis (@brutelogic) of Sucuri Security.
blog.sucuri.net/2017/09/stored-cross-site-scripting-vulnerability-in-wordpress-4-8-1.html
core.trac.wordpress.org/changeset/41395
wordpress.org/news/2017/09/wordpress-4-8-2-security-and-maintenance-release/