Description
Cross-site scripting (XSS) vulnerability in PHP, possibly 5.2.7 and earlier, when display_errors is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: because of the lack of details, it is unclear whether this is related to CVE-2006-0208.
Remediation
References
Related Vulnerabilities
WordPress Plugin Smart Email Alerts Cross-Site Scripting (1.0.10)
WordPress Plugin Ruven Toolkit Cross-Site Scripting (1.1)
Oracle JRE CVE-2013-0442 Vulnerability (CVE-2013-0442)
WordPress Plugin Background Music Cross-Site Scripting (1.0)
WordPress Plugin Slider by 10Web-Responsive Image Slider Cross-Site Request Forgery (1.2.22)