CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Wordpress: >> Wordpress >> 1.5.2 Security Vulnerabilities

CVE-2006-1263

Multiple "unannounced" cross-site scripting (XSS) vulnerabilities in WordPress before 2.0.2 allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors.

CVSS Score

4.3

EPSS Score

0.004

Published

2006-03-19

CVE-2006-1012

SQL injection vulnerability in WordPress 1.5.2, and possibly other versions before 2.0, allows remote attackers to execute arbitrary SQL commands via the User-Agent field in an HTTP header for a comment.

CVSS Score

7.5

EPSS Score

0.019

Published

2006-03-06

Page 34

Vulnerabilities

Vulnerable Software

Wordpress: >> Wordpress >> 1.5.2 Security Vulnerabilities

Products

Pricing

Contact Us