Make WordPress Core

Opened 7 years ago

Closed 7 years ago

Last modified 7 years ago

#40452 closed defect (bug) (invalid)

Vulnerability Report

Reported by: zchavda123's profile zchavda123 Owned by:
Milestone: Priority: normal
Severity: normal Version: 4.7.3
Component: Security Keywords:
Focuses: Cc:


Respected Sir/Madam

My name is Zeel Chavda i am a penetration tester, i found a vulnerability.So i want to contact to your technical staff member about this vulnerability.

I appreciate your time reading this and getting some one from your team to contact me.

Looking forward


Zeel Chavda

Attachments (1)

xss.PNG (449.7 KB) - added by zchavda123 7 years ago.
Xss on Version 4.7.3

Download all attachments as: .zip

Change History (4)

7 years ago

Xss on Version 4.7.3

#1 @lukecavanagh
7 years ago

  • Resolution set to invalid
  • Status changed from new to closed


The WordPress Security Team believes in Responsible Disclosure by alerting the security team immediately of any potential vulnerabilities. Potential security vulnerabilities can be signaled to the Security Team directly via the email address: security@…. The Security Team communicates amongst itself via a private email list, and works on a walled-off, private Trac for tracking, testing, and fixing bugs and security problems.

Last edited 7 years ago by SergeyBiryukov (previous) (diff)

#2 @johnbillion
7 years ago

  • Milestone Awaiting Review deleted

#3 @SergeyBiryukov
7 years ago

  • Component changed from Gallery to Security
Note: See TracTickets for help on using tickets.