CVE-2017-5488 log

Source
Severity High
Remote Yes
Type Cross-site scripting
Description
A cross-site scripting (XSS) vulnerability has been discovered in wordpress via the plugin name or version header on update-core.php.
Group Package Affected Fixed Severity Status Ticket
AVG-142 wordpress 4.7-1 4.7.1-1 High Fixed FS#52555
Date Advisory Group Package Severity Description
15 Jan 2017 ASA-201701-22 AVG-142 wordpress High multiple issues
References
https://github.com/WordPress/WordPress/commit/c9ea1de1441bb3bda133bf72d513ca9de66566c2