CVE-2013-5738
WordPress < 3.6.1 - Authenticated Cross-Site Scripting via HTML File Upload
Title source: llmDescription
The get_allowed_mime_types function in wp-includes/functions.php in WordPress before 3.6.1 does not require the unfiltered_html capability for uploads of .htm and .html files, which might make it easier for remote authenticated users to conduct cross-site scripting (XSS) attacks via a crafted file.
References (4)
Core 4
Core References
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2013/dsa-2757
Patch, Vendor Advisory x_refsource_confirm
http://core.trac.wordpress.org/changeset/25322
Vendor Advisory x_refsource_confirm
http://codex.wordpress.org/Version_3.6.1
Patch, Vendor Advisory x_refsource_confirm
http://wordpress.org/news/2013/09/wordpress-3-6-1/
Scores
EPSS
0.0072
EPSS Percentile
72.6%
Details
CWE
CWE-20
Status
published
Products (1)
wordpress/wordpress
< 3.6
Published
Sep 12, 2013
Tracked Since
Feb 18, 2026