Description

Cross-site scripting (XSS) vulnerability in blogroll.php in the cordobo-green-park theme for WordPress allows remote attackers to inject arbitrary web script or HTML via the PHP_SELF portion of a URI.

Remediation

References

CVE-2007-3241

Related Vulnerabilities

WordPress Plugin User Activity Log Multiple Vulnerabilities (1.2.4)

Oracle Application Server CVE-2009-1011 Vulnerability (CVE-2009-1011)

Apache Traffic Server Exposure of Resource to Wrong Sphere Vulnerability (CVE-2018-8040)

WordPress Plugin Ocean Extra Cross-Site Scripting (2.1.1)

Oracle Database Server CVE-2015-4925 Vulnerability (CVE-2015-4925)

Severity

Medium

Classification

CVE-2007-3241

Tags

Missing Update Known Vulnerabilities