ThreatPress

WordPress Vulnerabilities Database

Back

WordPress 2.8.1 - Remote Cross-Site Scripting Vulnerability

Product
WordPress
Description
This version of WordPress is prone to a cross-site scripting vulnerability.
Solution
Update WordPress.
Classification
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
References
Exploit-DB
CVE
Name CVE-2009-2851
Versions
Affected In 2.8.1
Fixed In 2.8.2
Disclosure date
2009-07-24
Credits
superfreakaz0rz