VDB
CVE-2018-20149
CVE-2018-20149
PUBLISHED
In WordPress before 4.9.9 and 5.x before 5.0.1, when the Apache HTTP Server is used, authors could upload crafted files that bypass intended MIME type restrictions, leading to XSS, as demonstrated by a .jpg file without JPEG data.
EPSS 4.43% · 89.2th percentile
Risk Scores
EPSS Score
4.43%
89.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:16.04:LTS | wordpress | 0, 4.3+dfsg-1, 4.4+dfsg-1 |
| Ubuntu:18.04:LTS | wordpress | 0, 4.8.2+dfsg-2, 4.8.3+dfsg-1 |
Exploit Intelligence
- 106220 (circl)
- https://wordpress.org/support/wordpress-version/version-5-0-1/ (circl)
- https://codex.wordpress.org/Version_4.9.9 (circl)
- https://wpvulndb.com/vulnerabilities/9175 (circl)
- https://github.com/WordPress/WordPress/commit/246a70bdbfac3bd45ff71c7941deef1bb206b19a (circl)
- DSA-4401 (circl)
- https://wordpress.org/news/2018/12/wordpress-5-0-1-security-release/ (circl)
- [debian-lts-announce] 20190211 [SECURITY] [DLA 1673-1] wordpress security update (circl)
- https://www.zdnet.com/article/wordpress-plugs-bug-that-led-to-google-indexing-some-user-passwords/ (circl)
Timeline
- Dec 14, 2018 CVE Published
- Apr 14, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- Aug 5, 2024 CVE Updated
- Mar 17, 2025 EPSS Score
- Mar 19, 2025 EPSS Score
- Mar 23, 2025 EPSS Score
- Mar 24, 2025 EPSS Score
- Mar 30, 2025 EPSS Score
- May 1, 2025 EPSS Score
- May 4, 2025 EPSS Score
- Jun 1, 2025 EPSS Score
References
- https://ubuntu.com/security/CVE-2018-20149 third-party-advisory
- https://wordpress.org/news/2018/12/wordpress-5-0-1-security-release/ third-party-advisory
- https://github.com/WordPress/WordPress/commit/246a70bdbfac3bd45ff71c7941deef1bb206b19a third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2018-20149 third-party-advisory