CVE-2010-4825

2011-08-2410:00:00

mitre

www.cve.org

AI Score

5.8

Confidence

High

EPSS

0.004

Percentile

73.8%

JSON

Cross-site scripting (XSS) vulnerability in magpie_debug.php in the Twitter Feed plugin (wp-twitter-feed) 0.3.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the url parameter.

References

secunia.com/advisories/42542

www.johnleitch.net/Vulnerabilities/WordPress.Twitter.Feed.0.3.1.Reflected.Cross-site.Scripting/68

www.osvdb.org/69760

www.securityfocus.com/bid/45294

exchange.xforce.ibmcloud.com/vulnerabilities/63942