How severe is CVE-2020-11030?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.4 out of 10.

What type of vulnerability is CVE-2020-11030?

This is classified as CWE-707, which is a common weakness in software security.

CVE-2020-11030

MEDIUM Year: 2020

CVSS v3 Score

5.4

Medium

CVSS v2 Score

3.5

Low

Weakness Type

CWE-707

View all →

Vulnerability Description

In affected versions of WordPress, a special payload can be crafted that can lead to scripts getting executed within the search block of the block editor. This requires an authenticated user with the ability to add content. This has been patched in version 5.4.1, along with all the previously affected versions via a minor release (5.3.3, 5.2.6, 5.1.5, 5.0.9, 4.9.14, 4.8.13, 4.7.17, 4.6.18, 4.5.21, 4.4.22, 4.3.23, 4.2.27, 4.1.30, 4.0.30, 3.9.31, 3.8.33, 3.7.33).

CVE-2020-11026

MEDIUM

CVSS:5.4(Medium)

In affected versions of WordPress, files with a specially crafted name when uploaded to the Media section can lead to script execution upon accessing the file. This requires an authenticated user with...

CWE-7072020

CVE-2020-36609

MEDIUM

CVSS:5.4(Medium)

A vulnerability was found in annyshow DuxCMS 2.1. It has been classified as problematic. This affects an unknown part of the file admin.php&r=article/AdminContent/edit of the component Article Handler...

CWE-7072020

CVE-2022-3333

MEDIUM

CVSS:5.4(Medium)

A vulnerability, which was classified as problematic, was found in Zephyr Project Manager up to 3.2.4. Affected is an unknown function of the file /v1/tasks/create/ of the component REST Call Handler....

CWE-7072022

CVE-2022-3434

MEDIUM

CVSS:5.4(Medium)

A vulnerability was found in SourceCodester Web-Based Student Clearance System. It has been rated as problematic. Affected by this issue is the function prepare of the file /Admin/add-student.php. The...

CWE-7072022

CVE-2022-3452

MEDIUM

CVSS:5.4(Medium)

A vulnerability was found in SourceCodester Book Store Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /category.php. The manipulation o...

CWE-7072022

CVE-2022-3453

MEDIUM

CVSS:5.4(Medium)

A vulnerability was found in SourceCodester Book Store Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /transcation.php. The manipulatio...

CWE-7072022

CVE-2020-11030

Vulnerability Description

Related Vulnerabilities

CVE-2020-11026

CVE-2020-36609

CVE-2022-3333

CVE-2022-3434

CVE-2022-3452

CVE-2022-3453