Description
Cross-site scripting (XSS) vulnerability in the administrator interface in WordPress before 2.8.2 allows remote attackers to inject arbitrary web script or HTML via a comment author URL.
Remediation
References
Related Vulnerabilities
WordPress Plugin Video Chat Multiple Cross-Site Scripting Vulnerabilities (1.4.1)
WordPress 4.1.x Multiple Vulnerabilities (4.1 - 4.1.28)
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-3092)
Oracle Database Server CVE-2011-0806 Vulnerability (CVE-2011-0806)
Envoy Proxy Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2019-18836)