Description

The get_allowed_mime_types function in wp-includes/functions.php in WordPress before 3.6.1 does not require the unfiltered_html capability for uploads of .htm and .html files, which might make it easier for remote authenticated users to conduct cross-site scripting (XSS) attacks via a crafted file.

Remediation

References

CVE-2013-5738

Related Vulnerabilities

WordPress Plugin WP ULike Cross-Site Scripting (3.1)

WordPress Plugin YITH WooCommerce Product Bundles Security Bypass (1.1.15)

Oracle JRE CVE-2013-2450 Vulnerability (CVE-2013-2450)

PostgreSQL Cryptographic Issues Vulnerability (CVE-2009-4034)

WordPress Plugin NextGEN Gallery-WordPress Gallery PHP Object Injection (3.1.5)

Severity

Medium

Classification

CVE-2013-5738 CWE-20

Tags

Missing Update Known Vulnerabilities