Description
Multiple cross-site scripting (XSS) vulnerabilities in post.php in WordPress 1.5.1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) p or (2) comment parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin BizLibrary Cross-Site Scripting (1.1)
WordPress Plugin Zingiri Web Shop Cross-Site Scripting (2.4.2)
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5492)
Oracle JRE CVE-2013-5782 Vulnerability (CVE-2013-5782)
Apache Tomcat Resource Management Errors Vulnerability (CVE-2012-4534)