Description

Multiple cross-site scripting (XSS) vulnerabilities in template-functions-post.php in WordPress 1.5 and earlier allow remote attackers to execute arbitrary commands via the (1) content or (2) title of the post.

Remediation

References

CVE-2005-1102

Related Vulnerabilities

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4401)

WordPress Plugin GPT AI Power Security Bypass (1.4.37)

WordPress Plugin User Registration-Custom Registration Form, Login Form And User Profile Cross-Site Scripting (1.5.5)

WordPress Plugin Kama Click Counter SQL Injection (3.4.9)

WordPress Plugin Double Opt-In for Download Multiple Cross-Site Scripting Vulnerabilities (2.1.5)

Severity

Medium

Classification

CVE-2005-1102

Tags

Missing Update Known Vulnerabilities