Wordpress Mu@1.0 Security Vulnerabilities and Issues — Wordpress Mu@1.0 CVE List

Lucene search

WordpressWordpress Mu1.0

3 matches found

CVE•added 2009/03/20 12:30 a.m.•61 views

CVE-2009-1030

Cross-site scripting (XSS) vulnerability in the choose_primary_blog function in wp-includes/wpmu-functions.php in WordPress MU (WPMU) before 2.7 allows remote attackers to inject arbitrary web script or HTML via the HTTP Host header.

4.3CVSS5.5AI score0.01038EPSS

CVE•added 2008/10/22 10:30 a.m.•40 views

CVE-2008-4671

Cross-site scripting (XSS) vulnerability in wp-admin/wp-blogs.php in Wordpress MU (WPMU) before 2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) s and (2) ip_address parameters.

4.3CVSS5.6AI score0.00735EPSS

Web

CVE•added 2007/08/27 11:17 p.m.•39 views

CVE-2007-4544

Cross-site scripting (XSS) vulnerability in wp-newblog.php in WordPress multi-user (MU) 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the weblog_id parameter (Username field).

4.3CVSS5.8AI score0.0014EPSS