Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5710

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2007-5710
Last Modified 07 Mar 2011 10:01:10
Published 30 Oct 2007 03:46:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2007-5710

Summary

Cross-site scripting (XSS) vulnerability in wp-admin/edit-post-rows.php in WordPress 2.3 allows remote attackers to inject arbitrary web script or HTML via the posts_columns array parameter.

Vulnerable Systems

Application

  • Wordpress 2.3


References

CONFIRM - http://wordpress.org/development/2007/10/wordpress-231/

SECUNIA - 27407

MISC - http://www.waraxe.us/advisory-59.html

VUPEN - ADV-2007-3640

OSVDB - 38279

XF - wordpress-editpostrows-xss(38166)

BID - 26228

BUGTRAQ - 20071027 [waraxe-2007-SA#059] - XSS in WordPress 2.3


Last Updated: 27 May 2016 10:46:14