Description

Cross-site scripting (XSS) vulnerability in blogroll.php in the cordobo-green-park theme for WordPress allows remote attackers to inject arbitrary web script or HTML via the PHP_SELF portion of a URI.

Remediation

References

CVE-2007-3241

Related Vulnerabilities

WordPress Plugin WP-Forum Multiple SQL Injection Vulnerabilities (1.7.8)

Mailman Other Vulnerability (CVE-2000-0861)

WordPress Plugin Catchers Helpdesk and Ticket system for Support Cross-Site Scripting (1.0.3)

Apache Traffic Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9518)

WordPress Plugin Plugin Central Multiple Cross-Site Scripting Vulnerabilities (2.5)

Severity

Medium

Classification

CVE-2007-3241

Tags

Missing Update Known Vulnerabilities