Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-5325
HistoryOct 08, 2012 - 8:55 p.m.

CVE-2012-5325

2012-10-0820:55:01
CWE-79
[email protected]
web.nvd.nist.gov
40
cve-2012-5325
cross-site scripting
xss
shortcode redirect
wordpress
security
vulnerabilities

2.1 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:S/C:N/I:P/A:N

5.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.4%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the scr_do_redirect function in scr.php in the Shortcode Redirect plugin 1.0.01 and earlier for WordPress allow remote authenticated users with certain permissions to inject arbitrary web script or HTML via the (1) url or (2) sec attributes in a redirect tag.

Affected configurations

NVD
Node
cartpaujshortcode-redirectRange1.0.01
OR
cartpaujshortcode-redirectMatch1.0.00
AND
wordpresswordpressMatch-

Related

wpvulndb 1
nvd 1
patchstack 1
prion 1
cvelist 1
wpvulndb
wpvulndb
Shortcode Redirect <= 1.0.01 - Stored Cross Site Scripting
2014-08-01 10:58:45
nvd
nvd
CVE-2012-5325
2012-10-08 20:55:01
patchstack
patchstack
WordPress Shortcode Redirect Plugin <= 1.0.01 - Multiple XSS
2012-10-08 00:00:00
prion
prion
Cross site scripting
2012-10-08 20:55:00
cvelist
cvelist
CVE-2012-5325
2012-10-08 20:00:00

2.1 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:S/C:N/I:P/A:N

5.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.4%

JSON
Related for CVE-2012-5325
wpvulndb1nvd1patchstack1prion1cvelist1