Description

Cross-site scripting (XSS) vulnerability in wp-register.php in WordPress 2.0 allows remote attackers to inject arbitrary web script or HTML via the user_login parameter.

Remediation

References

CVE-2007-5106

Related Vulnerabilities

Grafana Incorrect Authorization Vulnerability (CVE-2023-6152)

WordPress Plugin FV Flowplayer Video Player Cross-Site Scripting (7.5.32.7212)

Roundcube Multiple Buffer Overflow Vulnerabilities (CVE-2015-2181)

Jenkins Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2015-5322)

WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk Cross-Site Scripting (5.21)

Severity

Medium

Classification

CVE-2007-5106 CWE-707

Tags

Missing Update Known Vulnerabilities