Lucene search
WaraxeEDB-ID:30715HistoryOct 29, 2007 - 12:00 a.m.
WordPress Core 2.3 - 'Edit-Post-Rows.php' Cross-Site Scripting
2007-10-2900:00:00
waraxe
www.exploit-db.com
14
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/26228/info
WordPress is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input.
An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.
This issue affects WordPress 2.3; other versions may also be vulnerable.
http://www.example.com/wp-admin/edit-post-rows.php?posts_columns[]=<script>alert(123);</script> Related
freebsd
freebsd
wordpress -- cross-site scripting
2007-10-29 00:00:00
openvas
openvas
FreeBSD Ports: wordpress, de-wordpress
2008-09-04 00:00:00
FreeBSD Ports: wordpress, de-wordpress
2008-09-04 00:00:00
prion
prion
Cross site scripting
2007-10-30 19:46:00
nvd
nvd
CVE-2007-5710
2007-10-30 19:46:00
debiancve
debiancve
CVE-2007-5710
2007-10-30 19:46:00
nessus
nessus
FreeBSD : wordpress -- XSS (a467d0f9-8875-11dc-b3ba-0016179b2dd5)
2007-11-02 00:00:00
ubuntucve
ubuntucve
CVE-2007-5710
2007-10-30 00:00:00
patchstack
patchstack
WordPress <= 2.3 - XSS
2007-10-30 00:00:00
cvelist
cvelist
CVE-2007-5710
2007-10-30 19:00:00
cve
cve
CVE-2007-5710
2007-10-30 19:46:00