Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:alpm/archlinux/wordpress@4.7.2-1
purl pkg:alpm/archlinux/wordpress@4.7.2-1
Next non-vulnerable version 4.7.3-1
Latest non-vulnerable version 5.8.1-1
Risk 3.1
Vulnerabilities affecting this package (6)
Vulnerability Summary Fixed by
VCID-e1ss-azne-d7ha
Aliases:
CVE-2017-6819
In WordPress before 4.7.3, there is cross-site request forgery (CSRF) in Press This (wp-admin/includes/class-wp-press-this.php), leading to excessive use of server resources. The CSRF can trigger an outbound HTTP request for a large file that is then parsed by Press This.
4.7.3-1
Affected by 0 other vulnerabilities.
VCID-jf98-kean-p3b3
Aliases:
CVE-2017-6818
In WordPress before 4.7.3 (wp-admin/js/tags-box.js), there is cross-site scripting (XSS) via taxonomy term names.
4.7.3-1
Affected by 0 other vulnerabilities.
VCID-qpsj-hsmm-6qa8
Aliases:
CVE-2017-6816
security update
4.7.3-1
Affected by 0 other vulnerabilities.
VCID-srjh-2qnk-e7c6
Aliases:
CVE-2017-6817
security update
4.7.3-1
Affected by 0 other vulnerabilities.
VCID-tf2u-dse2-mufb
Aliases:
CVE-2017-6814
security update
4.7.3-1
Affected by 0 other vulnerabilities.
VCID-vywc-p4tw-8yd2
Aliases:
CVE-2017-6815
security update
4.7.3-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T18:27:12.978751+00:00 Arch Linux Importer Affected by VCID-tf2u-dse2-mufb https://security.archlinux.org/AVG-202 38.0.0
2026-04-01T18:27:12.955806+00:00 Arch Linux Importer Affected by VCID-vywc-p4tw-8yd2 https://security.archlinux.org/AVG-202 38.0.0
2026-04-01T18:27:12.931263+00:00 Arch Linux Importer Affected by VCID-qpsj-hsmm-6qa8 https://security.archlinux.org/AVG-202 38.0.0
2026-04-01T18:27:12.907432+00:00 Arch Linux Importer Affected by VCID-srjh-2qnk-e7c6 https://security.archlinux.org/AVG-202 38.0.0
2026-04-01T18:27:12.883239+00:00 Arch Linux Importer Affected by VCID-jf98-kean-p3b3 https://security.archlinux.org/AVG-202 38.0.0
2026-04-01T18:27:12.859244+00:00 Arch Linux Importer Affected by VCID-e1ss-azne-d7ha https://security.archlinux.org/AVG-202 38.0.0