Description
Multiple cross-site scripting (XSS) vulnerabilities in post.php in WordPress 1.5.1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) p or (2) comment parameter.
Remediation
References
Related Vulnerabilities
WordPress 3.4 Multiple Vulnerabilities (3.4)
Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2011-3348)
Oracle Application Server CVE-2009-1976 Vulnerability (CVE-2009-1976)
Ruby on Rails Improper Input Validation Vulnerability (CVE-2011-2929)
WordPress Plugin Are You a Human-The Fun Spam Blocker Cross-Site Scripting (1.4.32)