Description

Cross-site scripting (XSS) vulnerability in WordPress 2.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2008-2068

Related Vulnerabilities

WordPress Plugin Download Plugins and Themes from Dashboard Cross-Site Scripting (1.5.0)

WordPress Plugin QIWI payment module for Woocommerce Cross-Site Scripting (0.0.9)

Apache Tomcat Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2020-1935)

WordPress Plugin Import and export users and customers Directory Traversal (1.14.2)

WordPress Plugin Tidio Live Chat Cross-Site Request Forgery (4.1.0)

Severity

Medium

Classification

CVE-2008-2068 CWE-707

Tags

Missing Update Known Vulnerabilities