VDB

GCVE-110-MAGEIA-2015-290

GCVE-110-MAGEIA-2015-290
Advisory Published
Vulnetix · Advisory published July 27, 2015
WordPress versions 4.2.2 and earlier are affected by a cross-site scripting vulnerability, which could allow users with the Contributor or Author role to compromise a site (CVE-2015-5622). WordPress versions 4.2.2 and earlier are affected by an issue where it was possible for a user with Subscriber permissions to create a draft through Quick Draft (CVE-2015-5623).

Affected Products

VendorProductVersionsPlatforms
Mageiawordpress0 (affected), 3.9.7-1.mga4 (unaffected)

Browse GCVE Records

73,161 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›