WordPress <= 2.0.0 - Cross Site Scripting
- Because of this vulnerability, attackers can inject arbitrary web script or HTML via scriptable attributes such as onfocus and onblur in the "author's website" field.
- Update the WordPress to the latest available version (at least 2.0.1).
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
- Name CVE-2006-0733
Fixed In 2.0.1
- Disclosure date