3 matches found
CVE-2009-3891
Cross-site scripting XSS vulnerability in wp-admin/press-this.php in WordPress before 2.8.6 allows remote authenticated users to inject arbitrary web script or HTML via the s parameter aka the selection variable...
CVE-2009-3891
Cross-site scripting XSS vulnerability in wp-admin/press-this.php in WordPress before 2.8.6 allows remote authenticated users to inject arbitrary web script or HTML via the s parameter aka the selection variable...
CVE-2009-3891
The CVE-2009-3891 issue affects WordPress prior to 2.8.6, specifically the wp-admin/press-this.php path. The vulnerability is a Cross-Site Scripting (XSS) flaw that allows remote authenticated users to inject arbitrary web script or HTML through the s parameter (the selection variable). The root ...