CVE-2007-4104

WP-FeedStats WordPress plugin (before 2.4) contains multiple XSS vulnerabilities. Attackers can inject arbitrary web script or HTML via unspecified vectors, including an rss2 feed with an invalid or missing blog in the query string. Affects WP-FeedStats up to version 2.3; base CVSS from NVD is 4....