2017-09-23 20:00:00
mitre
PUBLISHED
Before version 4.8.2, WordPress was susceptible to a Cross-Site Scripting attack in the link modal via a javascript: or data: URL.