Oval Definition:	oval:com.ubuntu.trusty:def:20155732000
Revision Date: 2015-11-09 Version: 1 Title: CVE-2015-5732 on Ubuntu 14.04 LTS (trusty) - medium. Description: Cross-site scripting (XSS) vulnerability in the form function in the WP_Nav_Menu_Widget class in wp-includes/default-widgets.php in WordPress before 4.2.4 allows remote attackers to inject arbitrary web script or HTML via a widget title. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-5732 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND The 'wordpress' package in trusty is affected and needs fixing.
BACK