Oval Definition:	oval:com.ubuntu.bionic:def:201820149000
Revision Date: 2018-12-14 Version: 1 Title: CVE-2018-20149 on Ubuntu 18.04 LTS (bionic) - medium. Description: In WordPress before 4.9.9 and 5.x before 5.0.1, when the Apache HTTP Server is used, authors could upload crafted files that bypass intended MIME type restrictions, leading to XSS, as demonstrated by a .jpg file without JPEG data. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-20149 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND The vulnerability of the 'wordpress' package in bionic is not known (status: 'needs-triage'). It is pending evaluation.
BACK