CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-6677

Cross-site scripting (XSS) vulnerability in Peter's Random Anti-Spam Image 0.2.4 and earlier plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the comment field in the comment form.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.7%

CVSS Severity

CVSS v2 Score 4.3

References

http://osvdb.org/43444
http://websecurity.com.ua/1535/
http://osvdb.org/43444
http://websecurity.com.ua/1535/

Products affected by CVE-2007-6677

Peters Software » Random Anti-Spam Image » Version: 0.1

cpe:2.3:a:peters_software:random_anti-spam_image:0.1
Peters Software » Random Anti-Spam Image » Version: 0.2

cpe:2.3:a:peters_software:random_anti-spam_image:0.2
Peters Software » Random Anti-Spam Image » Version: 0.2.4

cpe:2.3:a:peters_software:random_anti-spam_image:0.2.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-6677

Products

Pricing

Contact Us