Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-5265

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2011-5265
Last Modified 15 Feb 2013 12:00:00
Published 12 Feb 2013 03:55:04
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-5265

Summary

Cross-site scripting (XSS) vulnerability in cached_image.php in the Featurific For WordPress plugin 1.6.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the snum parameter. NOTE: this has been disputed by a third party.

Vulnerable Systems

Application

  • Featurific For Wordpress Project Featurific-for-wordpress 1.6.2

  • Wordpress 1.6.2


References

XF - featurific-snum-xss(71468)

BID - 50779

BUGTRAQ - 20111123 Wordpress featurific-for-wordpress plugin Cross-Site Scripting Vulnerabilities

OSVDB - 77337

BUGTRAQ - 20120417 Re: Wordpress featurific-for-wordpress plugin Cross-Site Scripting Vulnerabilities


Last Updated: 27 May 2016 10:56:41