Lucene search
HistoryAug 22, 2007 - 11:17 p.m.
CVE-2007-4483
cve-2007-4483
cross-site scripting
xss
wordpress
classic theme
index.php
path_info
php_self
nvd
5.8 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
61.6%
Cross-site scripting (XSS) vulnerability in index.php in the WordPress Classic 1.5 theme in WordPress before 2.1.3 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF).
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress:wordpressclassic | wordpress wordpressclassic | eq | 1.5 |
Related
patchstack
patchstack
WordPress Classic Theme <= 1.5 - XSS
2007-08-22 00:00:00
wpvulndb
wpvulndb
Classic 1.5 - PHP_SELF XSS
2014-08-01 10:59:22
prion
prion
Cross site scripting
2007-08-22 23:17:00
securityvulns
securityvulns
debiancve
debiancve
CVE-2007-4483
2007-08-22 23:17:00
ubuntucve
ubuntucve
CVE-2007-4483
2007-08-22 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-1285-1)
2023-03-08 00:00:00
5.8 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
61.6%
Related for CVE-2007-4483