VulnerableCode Package Details - pkg:deb/debian/wordpress@6.5.5%2Bdfsg1-1?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-4g2n-5v12-yuff	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Automattic WordPress allows Stored XSS.This issue affects WordPress: from 6.5 through 6.5.4, from 6.4 through 6.4.4, from 6.3 through 6.3.4, from 6.2 through 6.2.5, from 6.1 through 6.1.6, from 6.0 through 6.0.8, from 5.9 through 5.9.9.	CVE-2024-31111
VCID-m8mf-t2td-67h7	WordPress Core is vulnerable to Stored Cross-Site Scripting via the HTML API in various versions prior to 6.5.5 due to insufficient input sanitization and output escaping on URLs. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.	CVE-2024-6307

Vulnerability

Summary

Aliases

VCID-4g2n-5v12-yuff

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Automattic WordPress allows Stored XSS.This issue affects WordPress: from 6.5 through 6.5.4, from 6.4 through 6.4.4, from 6.3 through 6.3.4, from 6.2 through 6.2.5, from 6.1 through 6.1.6, from 6.0 through 6.0.8, from 5.9 through 5.9.9.

CVE-2024-31111

VCID-m8mf-t2td-67h7

WordPress Core is vulnerable to Stored Cross-Site Scripting via the HTML API in various versions prior to 6.5.5 due to insufficient input sanitization and output escaping on URLs. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

CVE-2024-6307

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T13:30:50.995535+00:00	Debian Importer	Fixing	VCID-4g2n-5v12-yuff	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:44:27.092063+00:00	Debian Importer	Fixing	VCID-m8mf-t2td-67h7	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T09:19:39.184104+00:00	Debian Importer	Fixing	VCID-4g2n-5v12-yuff	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:00:15.529792+00:00	Debian Importer	Fixing	VCID-m8mf-t2td-67h7	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:58:01.529063+00:00	Debian Importer	Fixing	VCID-m8mf-t2td-67h7	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:58:01.271256+00:00	Debian Importer	Fixing	VCID-4g2n-5v12-yuff	https://security-tracker.debian.org/tracker/data/json	38.1.0