CVE-2007-4544

2007-08-2723:00:00

mitre

www.cve.org

5.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

51.0%

JSON

Cross-site scripting (XSS) vulnerability in wp-newblog.php in WordPress multi-user (MU) 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the weblog_id parameter (Username field).

References

osvdb.org/38442

securityvulns.ru/Rdocument875.html

websecurity.com.ua/1269/

www.securityfocus.com/archive/1/482006/100/0/threaded