Description
Multiple cross-site scripting (XSS) vulnerabilities in template-functions-post.php in WordPress 1.5 and earlier allow remote attackers to execute arbitrary commands via the (1) content or (2) title of the post.
Remediation
References
Related Vulnerabilities
WordPress Plugin FCChat Widget 'path' Parameter Cross-Site Scripting (2.1.7)
WordPress Plugin Catch Themes Demo Import Remote Code Execution (2.1)
WordPress Plugin About Author Cross-Site Scripting (1.3.9)
PHP Numeric Errors Vulnerability (CVE-2010-4409)
Atlassian Jira CVE-2019-11583 Vulnerability (CVE-2019-11583)