Threat Post

WordPress REST API Bug Could Be Used in Stored XSS Attacks

The recently patched REST API Endpoint vulnerability in WordPress could be leveraged to pull off stored cross-site scripting attacks. The recently patched WordPress REST API Endpoint vulnerability is ...
Searchenginejournal.com

WordPress Stored XSS Vulnerability – Update Now

WordPress announced a security update to fix two vulnerabilities that could provide an attacker with the opportunity to stage a full site takeover. Among the two vulnerabilities, the most serious one ...
heise online

VMware: Multiple products with stored cross-site scripting vulnerabilities

Stored cross-site scripting vulnerabilities exist in VMware Cloud Foundation and related products. Attackers can use these to inject script code into victims. A handful of VMware solutions are ...