Wordpress : Security Vulnerabilities, CVEs, Published In April 2006 (XSS)
Cross-site scripting (XSS) vulnerability in the paging links functionality in template-functions-links.php in Wordpress 1.5.2, and possibly other versions before 2.0.1, allows remote attackers to inject arbitrary web script or HTML to Internet Explorer users via the request URI ($_SERVER['REQUEST_URI']).
Max CVSS
6.8
EPSS Score
0.31%
Published
2006-04-17
Updated
2008-09-05
1 vulnerabilities found