CVE-2012-6511

2013-01-23T20:55:05
ID CVE-2012-6511
Type cve
Reporter NVD
Modified 2017-11-22T10:39:23

Description

Multiple cross-site scripting (XSS) vulnerabilities in organizer/page/users.php in the Organizer plugin 1.2.1 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) delete_id parameter or (2) extension parameter in an "Update Setting" action to wp-admin/admin.php.