Vulnerability Details CVE-2007-4483
Cross-site scripting (XSS) vulnerability in index.php in the WordPress Classic 1.5 theme in WordPress before 2.1.3 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.3%
CVSS Severity
CVSS v2 Score 4.3
References
- http://osvdb.org/38450
- http://securityvulns.ru/Rdocument751.html
- http://websecurity.com.ua/1234/
- http://www.securityfocus.com/archive/1/477253/100/0/threaded
- http://osvdb.org/38450
- http://securityvulns.ru/Rdocument751.html
- http://websecurity.com.ua/1234/
- http://www.securityfocus.com/archive/1/477253/100/0/threaded
Products affected by CVE-2007-4483
-
cpe:2.3:a:wordpress:wordpressclassic:1.5