Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4926

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2011-4926
Last Modified 29 Aug 2012 10:58:20
Published 29 Aug 2012 12:39:40
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-4926

Summary

Cross-site scripting (XSS) vulnerability in adminimize/adminimize_page.php in the Adminimize plugin before 1.7.22 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter.

Vulnerable Systems

Application

  • Bueltge Adminimize 0.6.9

  • Bueltge Adminimize 0.7

  • Bueltge Adminimize 0.7.1

  • Bueltge Adminimize 0.7.2

  • Bueltge Adminimize 0.7.3

  • Bueltge Adminimize 0.7.5

  • Bueltge Adminimize 0.7.6

  • Bueltge Adminimize 0.7.7

  • Bueltge Adminimize 0.7.8

  • Bueltge Adminimize 0.7.9

  • Bueltge Adminimize 0.8

  • Bueltge Adminimize 0.8.1

  • Bueltge Adminimize 1.0

  • Bueltge Adminimize 1.1

  • Bueltge Adminimize 1.2

  • Bueltge Adminimize 1.3

  • Bueltge Adminimize 1.4

  • Bueltge Adminimize 1.4.1

  • Bueltge Adminimize 1.4.2

  • Bueltge Adminimize 1.4.3-6

  • Bueltge Adminimize 1.4.7

  • Bueltge Adminimize 1.5

  • Bueltge Adminimize 1.5.1

  • Bueltge Adminimize 1.5.2

  • Bueltge Adminimize 1.5.3-8

  • Bueltge Adminimize 1.6.1

  • Bueltge Adminimize 1.6.3

  • Bueltge Adminimize 1.6.4

  • Bueltge Adminimize 1.6.5

  • Bueltge Adminimize 1.6.6-7

  • Bueltge Adminimize 1.6.8

  • Bueltge Adminimize 1.6.9

  • Bueltge Adminimize 1.7

  • Bueltge Adminimize 1.7.1

  • Bueltge Adminimize 1.7.10

  • Bueltge Adminimize 1.7.11

  • Bueltge Adminimize 1.7.12

  • Bueltge Adminimize 1.7.13

  • Bueltge Adminimize 1.7.14

  • Bueltge Adminimize 1.7.15

  • Bueltge Adminimize 1.7.16

  • Bueltge Adminimize 1.7.17

  • Bueltge Adminimize 1.7.18

  • Bueltge Adminimize 1.7.19

  • Bueltge Adminimize 1.7.2

  • Bueltge Adminimize 1.7.20

  • Bueltge Adminimize 1.7.21

  • Bueltge Adminimize 1.7.3

  • Bueltge Adminimize 1.7.4

  • Bueltge Adminimize 1.7.5

  • Bueltge Adminimize 1.7.6

  • Bueltge Adminimize 1.7.7

  • Bueltge Adminimize 1.7.8

  • Bueltge Adminimize 1.7.9


References

XF - adminimize-adminimizepage-xss(71414)

BID - 50745

BUGTRAQ - 20111121 Wordpress adminimize Plugin Vulnerabilities

MISC - http://www.securityfocus.com/archive/1/520591

OSVDB - 77472

MLIST - [oss-security] 20120105 CVE-request: WordPress plugin Adminimize XSS

MLIST - [oss-security] 20120105 Re: CVE-request: WordPress plugin Adminimize XSS

CONFIRM - http://wordpress.org/extend/plugins/adminimize/changelog/

CONFIRM - http://plugins.trac.wordpress.org/changeset?reponame=&new=467338@adminimize&old=466900@adminimize#file5


Last Updated: 27 May 2016 11:00:22