Lucene search

K
cve[email protected]CVE-2010-4825
HistoryAug 24, 2011 - 10:55 a.m.

CVE-2010-4825

2011-08-2410:55:05
CWE-79
web.nvd.nist.gov
24
cve-2010-4825
xss
vulnerability
twitter feed
wordpress
magpie_debug.php
web script
html
nvd

5.9 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

73.7%

Cross-site scripting (XSS) vulnerability in magpie_debug.php in the Twitter Feed plugin (wp-twitter-feed) 0.3.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the url parameter.

Affected configurations

NVD
Node
pleerwp-twitter-feedMatch0.3.1
AND
wordpresswordpress

5.9 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

73.7%