ThreatPress

WordPress Vulnerabilities Database

Back

WordPress MU 1.2.2-1.3.1 - Cross-Site Scripting

Product
WordPress MU
Description
Vulnerabilities in WordPress MU 1.2.2-1.3.1 allow an attacker to entice users to follow the malicious URL.
Solution
Update WordPress.
Classification
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
References
Exploit-DB
CVE
Name CVE-N/A
Versions
Affected In 1.2.2 - 1.3.1, 1.3.1, 1.3.0, 1.2.9, 1.2.8, 1.2.7, 1.2.6, 1.2.5, 1.2.4, 1.2.3, 1.2.2
Fixed In 1.3.2
Disclosure date
2009-11-10
Credits
Juan Galiana Lara