CVE-2012-2916

2012-05-21T14:55:07
ID CVE-2012-2916
Type cve
Reporter NVD
Modified 2017-08-28T21:31:45

Description

Cross-site scripting (XSS) vulnerability in sabre_class_admin.php in the SABRE plugin before 2.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the active_option parameter to wp-admin/tools.php.