Oval Definition:	oval:com.ubuntu.xenial:def:201820149000
Revision Date: 2018-12-14 Version: 1 Title: CVE-2018-20149 on Ubuntu 16.04 LTS (xenial) - medium. Description: In WordPress before 4.9.9 and 5.x before 5.0.1, when the Apache HTTP Server is used, authors could upload crafted files that bypass intended MIME type restrictions, leading to XSS, as demonstrated by a .jpg file without JPEG data. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-20149 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND The vulnerability of the 'wordpress' package in xenial is not known (status: 'needs-triage'). It is pending evaluation.
BACK