Lucene search

[email protected]NVD:CVE-2011-5128

HistoryAug 29, 2012 - 4:39 a.m.

CVE-2011-5128

2012-08-2904:39:40

CWE-79

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.017

Percentile

88.0%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the Adminimize plugin before 1.7.22 for WordPress allow remote attackers to inject arbitrary web script or HTML via the page parameter to (1) inc-options/deinstall_options.php, (2) inc-options/theme_options.php, or (3) inc-options/im_export_options.php, or the (4) post or (5) post_ID parameters to adminimize.php, different vectors than CVE-2011-4926.

Affected configurations

Nvd

Node

bueltgeadminimizeRange≤1.7.21

bueltgeadminimizeMatch0.6.9

bueltgeadminimizeMatch0.7

bueltgeadminimizeMatch0.7.1

bueltgeadminimizeMatch0.7.2

bueltgeadminimizeMatch0.7.3

bueltgeadminimizeMatch0.7.5

bueltgeadminimizeMatch0.7.6

bueltgeadminimizeMatch0.7.7

bueltgeadminimizeMatch0.7.8

bueltgeadminimizeMatch0.7.9

bueltgeadminimizeMatch0.8

bueltgeadminimizeMatch0.8.1

bueltgeadminimizeMatch1.0

bueltgeadminimizeMatch1.1

bueltgeadminimizeMatch1.2

bueltgeadminimizeMatch1.3

bueltgeadminimizeMatch1.4

bueltgeadminimizeMatch1.4.1

bueltgeadminimizeMatch1.4.2

bueltgeadminimizeMatch1.4.3-6

bueltgeadminimizeMatch1.4.7

bueltgeadminimizeMatch1.5

bueltgeadminimizeMatch1.5.1

bueltgeadminimizeMatch1.5.2

bueltgeadminimizeMatch1.5.3-8

bueltgeadminimizeMatch1.6.1

bueltgeadminimizeMatch1.6.3

bueltgeadminimizeMatch1.6.4

bueltgeadminimizeMatch1.6.5

bueltgeadminimizeMatch1.6.6-7

bueltgeadminimizeMatch1.6.8

bueltgeadminimizeMatch1.6.9

bueltgeadminimizeMatch1.7

bueltgeadminimizeMatch1.7.1

bueltgeadminimizeMatch1.7.2

bueltgeadminimizeMatch1.7.3

bueltgeadminimizeMatch1.7.4

bueltgeadminimizeMatch1.7.5

bueltgeadminimizeMatch1.7.6

bueltgeadminimizeMatch1.7.7

bueltgeadminimizeMatch1.7.8

bueltgeadminimizeMatch1.7.9

bueltgeadminimizeMatch1.7.10

bueltgeadminimizeMatch1.7.11

bueltgeadminimizeMatch1.7.12

bueltgeadminimizeMatch1.7.13

bueltgeadminimizeMatch1.7.14

bueltgeadminimizeMatch1.7.15

bueltgeadminimizeMatch1.7.16

bueltgeadminimizeMatch1.7.17

bueltgeadminimizeMatch1.7.18

bueltgeadminimizeMatch1.7.19

bueltgeadminimizeMatch1.7.20

AND

wordpresswordpressMatch-

VendorProductVersionCPE
bueltgeadminimize*cpe:2.3:a:bueltge:adminimize:*:*:*:*:*:*:*:*
bueltgeadminimize0.6.9cpe:2.3:a:bueltge:adminimize:0.6.9:*:*:*:*:*:*:*
bueltgeadminimize0.7cpe:2.3:a:bueltge:adminimize:0.7:*:*:*:*:*:*:*
bueltgeadminimize0.7.1cpe:2.3:a:bueltge:adminimize:0.7.1:*:*:*:*:*:*:*
bueltgeadminimize0.7.2cpe:2.3:a:bueltge:adminimize:0.7.2:*:*:*:*:*:*:*
bueltgeadminimize0.7.3cpe:2.3:a:bueltge:adminimize:0.7.3:*:*:*:*:*:*:*
bueltgeadminimize0.7.5cpe:2.3:a:bueltge:adminimize:0.7.5:*:*:*:*:*:*:*
bueltgeadminimize0.7.6cpe:2.3:a:bueltge:adminimize:0.7.6:*:*:*:*:*:*:*
bueltgeadminimize0.7.7cpe:2.3:a:bueltge:adminimize:0.7.7:*:*:*:*:*:*:*
bueltgeadminimize0.7.8cpe:2.3:a:bueltge:adminimize:0.7.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
bueltge	adminimize	*	cpe:2.3:a:bueltge:adminimize::::::::
bueltge	adminimize	0.6.9	cpe:2.3:a:bueltge:adminimize:0.6.9:::::::*
bueltge	adminimize	0.7	cpe:2.3:a:bueltge:adminimize:0.7:::::::*
bueltge	adminimize	0.7.1	cpe:2.3:a:bueltge:adminimize:0.7.1:::::::*
bueltge	adminimize	0.7.2	cpe:2.3:a:bueltge:adminimize:0.7.2:::::::*
bueltge	adminimize	0.7.3	cpe:2.3:a:bueltge:adminimize:0.7.3:::::::*
bueltge	adminimize	0.7.5	cpe:2.3:a:bueltge:adminimize:0.7.5:::::::*
bueltge	adminimize	0.7.6	cpe:2.3:a:bueltge:adminimize:0.7.6:::::::*
bueltge	adminimize	0.7.7	cpe:2.3:a:bueltge:adminimize:0.7.7:::::::*
bueltge	adminimize	0.7.8	cpe:2.3:a:bueltge:adminimize:0.7.8:::::::*