Description
Multiple cross-site scripting (XSS) vulnerabilities in template-functions-post.php in WordPress 1.5 and earlier allow remote attackers to execute arbitrary commands via the (1) content or (2) title of the post.
Remediation
References
Related Vulnerabilities
Microsoft SQL Server CVE-2023-29356 Vulnerability (CVE-2023-29356)
Oracle Database Server CVE-2012-3146 Vulnerability (CVE-2012-3146)
concrete5 Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-22958)
WordPress Plugin Church Admin Arbitrary File Upload (4.4.6)
Craft CMS Missing Encryption of Sensitive Data Vulnerability (CVE-2022-37783)