CVE-2020-28036

Risk Scores

Affected Products

Exploit Intelligence

• https://wordpress.org/news/2020/10/wordpress-5-5-2-security-and-maintenance-release/ (circl)
• https://github.com/WordPress/wordpress-develop/commit/c9e6b98968025b1629015998d12c3102165a7d32 (circl)
• https://wpscan.com/vulnerability/10449 (circl)
• [debian-lts-announce] 20201103 [SECURITY] [DLA 2429-1] wordpress security update (circl)
• DSA-4784 (circl)
• FEDORA-2020-15e15c35da (circl)
• FEDORA-2020-a764b11b52 (circl)
• FEDORA-2020-b386fac43a (circl)

Timeline

• Oct 31, 2020 CVE Published
• Apr 14, 2021 EPSS Score
• Feb 4, 2022 EPSS Score
• Apr 1, 2022 EPSS Score
• Aug 4, 2024 CVE Updated
• Mar 17, 2025 EPSS Score
• Mar 18, 2025 EPSS Score
• Mar 20, 2025 EPSS Score
• Mar 23, 2025 EPSS Score
• Mar 24, 2025 EPSS Score
• Mar 29, 2025 EPSS Score
• Mar 30, 2025 EPSS Score

References

• https://github.com/WordPress/wordpress-develop/commit/c9e6b98968025b1629015998d12c3102165a7d32 url
• https://lists.debian.org/debian-lts-announce/2020/11/msg00004.html url
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHVNK2WYAM3ZTCXTFSEIT56IKLVJHU3/ url
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VAVVYJKA2I6CRQUINECDPBGWMQDEG244/ url
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VUXVUAKL2HL4QYJEPHBNVQQWRMFMII2Y/ url
• https://wordpress.org/news/2020/10/wordpress-5-5-2-security-and-maintenance-release/ url
• https://wpscan.com/vulnerability/10449 url
• https://www.debian.org/security/2020/dsa-4784 url
• https://nvd.nist.gov/vuln/detail/CVE-2020-28036 url