Description

Multiple cross-site scripting (XSS) vulnerabilities in template-functions-post.php in WordPress 1.5 and earlier allow remote attackers to execute arbitrary commands via the (1) content or (2) title of the post.

Remediation

References

CVE-2005-1102

Related Vulnerabilities

WordPress Plugin FCChat Widget 'path' Parameter Cross-Site Scripting (2.1.7)

WordPress Plugin Catch Themes Demo Import Remote Code Execution (2.1)

WordPress Plugin About Author Cross-Site Scripting (1.3.9)

PHP Numeric Errors Vulnerability (CVE-2010-4409)

Atlassian Jira CVE-2019-11583 Vulnerability (CVE-2019-11583)

Severity

Medium

Classification

CVE-2005-1102

Tags

Missing Update Known Vulnerabilities