1 comment

[ 4.3 ms ] story [ 15.9 ms ] thread
> The Genericons icon font package, which is used in a number of popular themes and plugins, contained an HTML file vulnerable to a cross-site scripting attack.

How can an HTML file be vulnerable to XSS?