Security Advisory

CVE-2018-6389

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-02-06 17:00:00

Last updated 2024-08-05 06:01:49

Assigner mitre

State PUBLISHED

Description

In WordPress through 4.9.2, unauthenticated attackers can cause a denial of service (resource consumption) by using the large list of registered .js files (from wp-includes/script-loader.php) to construct a series of requests to load every file many times.

← Browse all CVEs View on cve.org ↗