CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Wordpress: >> Wordpress Mu >> 1.0 Security Vulnerabilities

CVE-2009-1030

Cross-site scripting (XSS) vulnerability in the choose_primary_blog function in wp-includes/wpmu-functions.php in WordPress MU (WPMU) before 2.7 allows remote attackers to inject arbitrary web script or HTML via the HTTP Host header.

CVSS Score

4.3

EPSS Score

0.01

Published

2009-03-20

CVE-2008-4671

Cross-site scripting (XSS) vulnerability in wp-admin/wp-blogs.php in Wordpress MU (WPMU) before 2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) s and (2) ip_address parameters.

CVSS Score

4.3

EPSS Score

0.007

Published

2008-10-22

Page 1

Vulnerabilities

Vulnerable Software

Wordpress: >> Wordpress Mu >> 1.0 Security Vulnerabilities

Products

Pricing

Contact Us