CVE-2012-2916
CVE-2012-2916 describes a Cross-Site Scripting (XSS) vulnerability in the SABRE WordPress plugin prior to 2.1, specifically in sabre_class_admin.php. The flaw allows remote attackers to inject arbitrary script/HTML via the active_option parameter to wp-admin/tools.php. Affected component: SABRE p...