WordPress <= 4.5.1 – Pupload Same Origin Method Execution (SOME) | CVE 2016-4566

Affects WordPress

3.8.1

Fixed in WordPress 3.8.14

3.8

Fixed in WordPress 3.8.14

3.7.1

Fixed in WordPress 3.7.14

3.9

Fixed in WordPress 3.9.12

3.9.1

Fixed in WordPress 3.9.12

3.7

Fixed in WordPress 3.7.14

3.8.2

Fixed in WordPress 3.8.14

3.8.3

Fixed in WordPress 3.8.14

3.9.2

Fixed in WordPress 3.9.12

4.0

Fixed in WordPress 4.0.11

4.1

Fixed in WordPress 4.1.11

4.1.1

Fixed in WordPress 4.1.11

4.2

Fixed in WordPress 4.2.8

3.9.3

Fixed in WordPress 3.9.12

4.1.2

Fixed in WordPress 4.1.11

4.2.1

Fixed in WordPress 4.2.8

4.0.1

Fixed in WordPress 4.0.11

4.1.5

Fixed in WordPress 4.1.11

4.1.4

Fixed in WordPress 4.1.11

4.1.3

Fixed in WordPress 4.1.11

3.8.4

Fixed in WordPress 3.8.14

3.7.4

Fixed in WordPress 3.7.14

4.2.3

Fixed in WordPress 4.2.8

3.8.8

Fixed in WordPress 3.8.14

3.8.5

Fixed in WordPress 3.8.14

3.8.6

Fixed in WordPress 3.8.14

3.8.7

Fixed in WordPress 3.8.14

3.7.2

Fixed in WordPress 3.7.14

3.7.3

Fixed in WordPress 3.7.14

3.7.5

Fixed in WordPress 3.7.14

3.7.6

Fixed in WordPress 3.7.14

3.7.7

Fixed in WordPress 3.7.14

3.7.8

Fixed in WordPress 3.7.14

3.7.9

Fixed in WordPress 3.7.14

3.8.9

Fixed in WordPress 3.8.14

3.9.4

Fixed in WordPress 3.9.12

3.9.5

Fixed in WordPress 3.9.12

3.9.6

Fixed in WordPress 3.9.12

3.9.7

Fixed in WordPress 3.9.12

4.0.2

Fixed in WordPress 4.0.11

4.0.3

Fixed in WordPress 4.0.11

4.0.4

Fixed in WordPress 4.0.11

4.0.5

Fixed in WordPress 4.0.11

4.0.6

Fixed in WordPress 4.0.11

4.1.6

Fixed in WordPress 4.1.11

4.2.2

Fixed in WordPress 4.2.8

4.2.4

Fixed in WordPress 4.2.8

4.1.7

Fixed in WordPress 4.1.11

4.0.7

Fixed in WordPress 4.0.11

3.9.8

Fixed in WordPress 3.9.12

3.8.10

Fixed in WordPress 3.8.14

3.7.10

Fixed in WordPress 3.7.14

4.3

Fixed in WordPress 4.3.4

4.3.1

Fixed in WordPress 4.3.4

4.2.5

Fixed in WordPress 4.2.8

4.1.8

Fixed in WordPress 4.1.11

4.0.8

Fixed in WordPress 4.0.11

3.9.9

Fixed in WordPress 3.9.12

3.8.11

Fixed in WordPress 3.8.14

3.7.11

Fixed in WordPress 3.7.14

4.4

Fixed in WordPress 4.4.3

3.7.12

Fixed in WordPress 3.7.14

3.8.12

Fixed in WordPress 3.8.14

3.9.10

Fixed in WordPress 3.9.12

4.0.9

Fixed in WordPress 4.0.11

4.1.9

Fixed in WordPress 4.1.11

4.2.6

Fixed in WordPress 4.2.8

4.3.2

Fixed in WordPress 4.3.4

4.4.1

Fixed in WordPress 4.4.3

4.4.2

Fixed in WordPress 4.4.3

4.3.3

Fixed in WordPress 4.3.4

4.2.7

Fixed in WordPress 4.2.8

4.1.10

Fixed in WordPress 4.1.11

4.0.10

Fixed in WordPress 4.0.11

3.9.11

Fixed in WordPress 3.9.12

3.8.13

Fixed in WordPress 3.8.14

3.7.13

Fixed in WordPress 3.7.14

4.5

Fixed in WordPress 4.5.2

4.5.1

Fixed in WordPress 4.5.2

References

CVE

CVE-2016-4566

URL

https://wordpress.org/news/2016/05/wordpress-4-5-2/

URL

https://github.com/WordPress/WordPress/commit/c33e975f46a18f5ad611cf7e7c24398948cecef8

URL

https://gist.github.com/cure53/09a81530a44f6b8173f545accc9ed07e

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

CVSS

6.1 (medium)

Miscellaneous

Submitter

ethicalhack3r

Submitter twitter

ethicalhack3r

Verified

No

WPVDB ID

a82a6c6f-1787-4adc-84dd-3151f1edfd06

Timeline

Publicly Published

2016-05-06 (about 9 years ago)

Added

2016-05-06 (about 9 years ago)

Last Updated

2020-09-22 (about 5 years ago)

Other

Published

Title

Published

2024-03-27

Title

Salon booking system < 9.6.3 - Unauthenticated Stored XSS

Published

2024-06-26

Title

Portfolio Gallery – Image Gallery Plugin < 1.6.5 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting

Published

2014-08-01

Title

Image Resizer - Cross Site Scripting

Published

2020-08-31

Title

Bulk Change <= 1.0 - Authenticated Reflected Cross-Site Scripting

Published

2025-12-05

Title

Link Whisper Free < 0.8.9 - Reflected Cross-Site Scripting