Low 3.7
2026-03-10
WordPress <= 6.9.1 - Authenticated (Author+) XML External Entity Injection via getID3 Library Media Upload
WordPress 4.0.37 Vulnerabilities
Vulnerabilities 3
WordPress <= 6.9.1 - Authenticated (Author+) XML External Entity Injection via getID3 Library Media Upload
WordPress Core < 6.2.1 - Cross-Site Request Forgery
CVE-2018-14028