CVE-2007-3240

Cross-site scripting (XSS) vulnerability in 404.php in the Vistered-Little theme for WordPress allows remote attackers to inject arbitrary web script or HTML via the URI (REQUEST_URI) that accesses index.php. NOTE: this can be leveraged for PHP code execution in an administrative session.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:wordpress:wordpress:2.2:*:*:*:*:*:*:*

Information

Published : 2007-06-14 18:30

Updated : 2018-10-16 09:47


NVD link : CVE-2007-3240

Mitre link : CVE-2007-3240


JSON object : View

Advertisement

dedicated server usa

Products Affected

wordpress

  • wordpress