CVE-2016-7168: XSS
First published: Thu Jan 05 2017(Updated: )
Cross-site scripting (XSS) vulnerability in the media_handle_upload function in wp-admin/includes/media.php in WordPress before 4.6.1 might allow remote attackers to inject arbitrary web script or HTML by tricking an administrator into uploading an image file that has a crafted filename.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| WordPress | <=4.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.debian.org/security/2016/dsa-3681
- http://www.openwall.com/lists/oss-security/2016/09/08/19
- http://www.openwall.com/lists/oss-security/2016/09/08/24
- http://www.securityfocus.com/bid/92841
- https://codex.wordpress.org/Version_4.6.1
- https://github.com/WordPress/WordPress/commit/c9e60dab176635d4bfaaf431c0ea891e4726d6e0
- https://sumofpwn.nl/advisory/2016/persistent_cross_site_scripting_vulnerability_in_wordpress_due_to_unsafe_processing_of_file_names.html
- https://wordpress.org/news/2016/09/wordpress-4-6-1-security-and-maintenance-release/
- https://wpvulndb.com/vulnerabilities/8615
Frequently Asked Questions
What is the severity of CVE-2016-7168?
The severity of CVE-2016-7168 is considered medium as it allows remote attackers to perform cross-site scripting attacks.
How do I fix CVE-2016-7168?
To fix CVE-2016-7168, upgrade to WordPress version 4.6.1 or later.
What types of attacks are possible due to CVE-2016-7168?
CVE-2016-7168 can allow attackers to inject arbitrary web scripts or HTML via manipulated filenames of uploaded images.
Who is impacted by CVE-2016-7168?
Administrators using WordPress versions before 4.6.1 are impacted by CVE-2016-7168.
What components of WordPress are affected by CVE-2016-7168?
The media_handle_upload function in wp-admin/includes/media.php is specifically affected by CVE-2016-7168.
- agent/type
- agent/softwarecombine
- agent/author
- agent/references
- agent/severity
- agent/remedy
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/wordpress
- canonical/wordpress
- version/wordpress/4.6