Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4733

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-4733
Last Modified 29 Jan 2009 01:57:17
Published 24 Oct 2008 06:30:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-4733

Summary

Cross-site scripting (XSS) vulnerability in wpcommentremix.php in WP Comment Remix plugin before 1.4.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the (1) replytotext, (2) quotetext, (3) originallypostedby, (4) sep, (5) maxtags, (6) tagsep, (7) tagheadersep, (8) taglabel, and (9) tagheaderlabel parameters.

Vulnerable Systems

Application

  • Pressography Wp Comment Remix Plugin 1.4

  • Pressography Wp Comment Remix Plugin 1.4.3


References

XF - wpcommentremix-wpcommentremix-xss(45861)

BID - 31750

BUGTRAQ - 20081014 WP Comment Remix 1.4.3 Multiple Vulnerabilities

SREASON - 4492

SECUNIA - 32253

MISC - http://chxsecurity.org/advisories/adv-3-full.txt


Last Updated: 27 May 2016 10:48:36