4.3
CVSSv2

CVE-2006-1263

CVSSv4: NA | CVSSv3: NA | CVSSv2: 4.3 | VMScore: 530 | EPSS: 0.00138 | KEV: Not Included
Published: 19/03/2006 Updated: 21/11/2024

Vulnerability Summary

Multiple "unannounced" cross-site scripting (XSS) vulnerabilities in WordPress prior to 2.0.2 allow remote malicious users to inject arbitrary web script or HTML via unknown attack vectors.

Vulnerable Product Search on Vulmon Subscribe to Product

wordpress wordpress 0.6.2

wordpress wordpress 0.6.2.1

wordpress wordpress 0.7

wordpress wordpress 0.71

wordpress wordpress 1.2

wordpress wordpress 1.2.1

wordpress wordpress 1.2.2

wordpress wordpress 1.5

wordpress wordpress 1.5.1

wordpress wordpress 1.5.1.2

wordpress wordpress 1.5.1.3

wordpress wordpress 1.5.2

wordpress wordpress 2.0

wordpress wordpress 2.0.1

Vendor Advisories

Debian Bug report logs - #328909 wordpress: CSS Security Vulnerability Package: wordpress; Maintainer for wordpress is Craig Small <csmall@debianorg>; Source for wordpress is src:wordpress (PTS, buildd, popcon) Reported by: Noam Rathaus <noamr@beyondsecuritycom> Date: Sun, 18 Sep 2005 06:48:02 UTC Severity: minor ...