Description

Cross-site scripting (XSS) vulnerability in wp-admin/edit-post-rows.php in WordPress 2.3 allows remote attackers to inject arbitrary web script or HTML via the posts_columns array parameter.

Remediation

References

CVE-2007-5710

Related Vulnerabilities

MySQL CVE-2017-3649 Vulnerability (CVE-2017-3649)

WordPress Plugin Ultimate Profile Builder By CMSHelpLive Multiple Vulnerabilities (2.3.3)

WordPress Plugin Catchers Helpdesk and Ticket system for Support Cross-Site Scripting (2.6.7)

Drupal Core 8.8.0 Denial of Service (8.8.0)

MySQL CVE-2020-2579 Vulnerability (CVE-2020-2579)

Severity

Low

Classification

CVE-2007-5710 CWE-707

Tags

Missing Update Known Vulnerabilities