OVAL Reference oval:com.ubuntu.xenial:def:20176814000

Oval Definition:

oval:com.ubuntu.xenial:def:20176814000

Revision Date:	2017-03-11	Version:	1
Title:	CVE-2017-6814 on Ubuntu 16.04 LTS (xenial) - medium.
Description:	In WordPress before 4.7.3, there is authenticated Cross-Site Scripting (XSS) via Media File Metadata. This is demonstrated by both (1) mishandling of the playlist shortcode in the wp_playlist_shortcode function in wp-includes/media.php and (2) mishandling of meta information in the renderTracks function in wp-includes/js/mediaelement/wp-playlist.js.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2017-6814
Platform(s):	Ubuntu 16.04 LTS	Product(s):
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed. AND The 'wordpress' package in xenial is affected and needs fixing.