WordPress: 5.4.19 → 5.8.9
WordPress · upgrade impact · Official site ↗
Fixed by upgrading to 5.8.9 iVulnerabilities that affect 5.4.19 but no longer affect 5.8.9 — the security gain from this upgrade, by exploited status then exploitation probability.
Exploited first, then by exploitation probability (EPSS).
CVE-2020-28032 CRITICAL EPSS 28% ✓ cleared in 5.8.9 CVE-2021-44223 HIGH EPSS 27% ✓ cleared in 5.8.9 CVE-2020-28038 MEDIUM EPSS 18% ✓ cleared in 5.8.9 CVE-2022-21662 HIGH EPSS 14% ✓ cleared in 5.8.9 CVE-2020-28037 CRITICAL EPSS 14% ✓ cleared in 5.8.9 CVE-2020-28035 CRITICAL EPSS 7% ✓ cleared in 5.8.9 CVE-2020-28036 CRITICAL EPSS 6% ✓ cleared in 5.8.9 CVE-2020-28039 CRITICAL EPSS 6% ✓ cleared in 5.8.9 CVE-2022-21664 HIGH EPSS 4% ✓ cleared in 5.8.9 CVE-2020-28034 MEDIUM EPSS 3% ✓ cleared in 5.8.9 CVE-2021-29450 MEDIUM EPSS 2% ✓ cleared in 5.8.9 CVE-2021-39200 MEDIUM EPSS 2% ✓ cleared in 5.8.9 CVE-2018-19296 HIGH EPSS 1% ✓ cleared in 5.8.9 CVE-2020-28033 HIGH EPSS 1% ✓ cleared in 5.8.9 CVE-2021-39201 HIGH EPSS 0% ✓ cleared in 5.8.9 CVE-2022-21663 MEDIUM EPSS 0% ✓ cleared in 5.8.9 CVE-2020-28040 MEDIUM EPSS 0% ✓ cleared in 5.8.9Still open in 5.8.9 iKnown vulnerabilities that affect 5.8.9 too — upgrading to it does not clear these.
These affect 5.8.9 as well — a later release may be needed.
CVE-2022-3590 MEDIUM EPSS 90% → see advisory CVE-2023-22622 MEDIUM EPSS 8% → see advisory CVE-2022-4973 MEDIUM EPSS 1% → see advisory