Description

Multiple cross-site scripting (XSS) vulnerabilities in post.php in WordPress 1.5.1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) p or (2) comment parameter.

Remediation

References

CVE-2005-2107

Related Vulnerabilities

WordPress Plugin BizLibrary Cross-Site Scripting (1.1)

WordPress Plugin Zingiri Web Shop Cross-Site Scripting (2.4.2)

Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5492)

Oracle JRE CVE-2013-5782 Vulnerability (CVE-2013-5782)

Apache Tomcat Resource Management Errors Vulnerability (CVE-2012-4534)

Severity

Medium

Classification

CVE-2005-2107

Tags

Missing Update Known Vulnerabilities