CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mg12: >> Wp-Recentcomments >> 1.8.2 Security Vulnerabilities

CVE-2012-1068

Cross-site scripting (XSS) vulnerability in the rc_ajax function in core.php in the WP-RecentComments plugin before 2.0.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter, related to AJAX paging.

CVSS Score

4.3

EPSS Score

0.003

Published

2012-02-14

Page 1

Vulnerabilities

Vulnerable Software

Mg12: >> Wp-Recentcomments >> 1.8.2 Security Vulnerabilities

Products

Pricing

Contact Us