WordPress <= 5.2.2 - Cross-Site Scripting (XSS) in URL Sanitisation



Description
According to the WordPress release notes:

"Props to Soroush Dalili (@irsdl) from NCC Group for disclosing an issue with URL sanitization that can lead to cross-site scripting (XSS) attacks."

Affects WordPresses

fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.1.2
fixed in version 5.1.2
fixed in version 5.0.6
fixed in version 5.0.6
fixed in version 5.0.6
fixed in version 5.0.6
fixed in version 5.0.6
fixed in version 4.9.11
fixed in version 4.9.11
fixed in version 4.9.11
fixed in version 4.9.11
fixed in version 4.9.11
fixed in version 4.9.11
fixed in version 4.9.11
fixed in version 4.9.11
fixed in version 4.9.11
fixed in version 4.9.11
fixed in version 4.9.11
fixed in version 4.8.10
fixed in version 4.8.10
fixed in version 4.8.10
fixed in version 4.8.10
fixed in version 4.8.10
fixed in version 4.8.10
fixed in version 4.8.10
fixed in version 4.8.10
fixed in version 4.8.10
fixed in version 4.8.10
fixed in version 4.7.14
fixed in version 4.7.14
fixed in version 4.7.14
fixed in version 4.7.14
fixed in version 4.7.14
fixed in version 4.7.14
fixed in version 4.7.14
fixed in version 4.7.14
fixed in version 4.7.14
fixed in version 4.7.14
fixed in version 4.7.14
fixed in version 4.7.14
fixed in version 4.7.14
fixed in version 4.7.14
fixed in version 4.6.15
fixed in version 4.6.15
fixed in version 4.6.15
fixed in version 4.6.15
fixed in version 4.6.15
fixed in version 4.6.15
fixed in version 4.6.15
fixed in version 4.6.15
fixed in version 4.6.15
fixed in version 4.6.15
fixed in version 4.6.15
fixed in version 4.6.15
fixed in version 4.6.15
fixed in version 4.6.15
fixed in version 4.6.15
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.5.18
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.4.19
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.3.20
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.2.24
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.1.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 4.0.27
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.9.28
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.8.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 3.7.30
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3
fixed in version 5.2.3

References

CVE 2019-16222
URL https://wordpress.org/news/2019/09/wordpress-5-2-3-security-and-maintenance-release/
URL https://github.com/WordPress/WordPress/commit/30ac67579559fe42251b5a9f887211bf61a8ed68

Classification

Type XSS
OWASP Top 10 A7: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Original Researcher Soroush Dalili (@irsdl) - NCC Group
Submitter Ryan Dewhurst
Views 32940
Verified No
WPVDB ID 9867

Timeline

Publicly Published 2019-09-05 (2 months ago)
Added 2019-09-05 (2 months ago)
Last Updated 2019-09-11 (2 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin