CVE-2019-16221 (wordpress)

WordPress before 5.2.3 allows reflected XSS in the dashboard.
Source: NIST
CVE-2019-16221 (wordpress)