Sign in Get started

← All advisories

Medium severity4.3NVD Advisory· Published Nov 17, 2017· Updated May 13, 2026

CVE-2017-10889

CVE-2017-10889

Description

TablePress prior to version 1.8.1 allows an attacker to conduct XML External Entity (XXE) attacks via unspecified vectors.

Affected products

2

Tablepress/Tablepress
cpe:2.3:a:tablepress:tablepress:*:*:*:*:*:wordpress:*:*
Range: <=1.8
tablepress.org/TablePressv5
Range: prior to version 1.8.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

jvn.jp/en/jp/JVN05398317/index.htmlnvdThird Party AdvisoryVDB Entry
wordpress.org/plugins/tablepress/nvdRelease NotesThird Party Advisory

News mentions

0

No linked articles in our index yet.