Persistent xss with oEmbed

9967819 · June 25, 2023, 12:16pm

Hi,

A recent security exploit with oEmbed code in wordpress 6.x was found :
https://wpscan.com/vulnerability/3b574451-2852-4789-bc19-d5cc39948db5

Your thoughts on this potential security issue are welcome.

smart

viktor · June 25, 2023, 12:28pm

Welcome, and thanks for asking about this vulnerability.

This was patched in 1.5.3.

9967819 · June 25, 2023, 1:03pm

i feel a lot safer now…

viktor · June 27, 2023, 8:03pm