| Max CVSS | 6.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-3238 | 6.0 |
Cross-site scripting (XSS) vulnerability in functions.php in the default theme in WordPress 2.2 allows remote authenticated administrators to inject arbitrary web script or HTML via the PATH_INFO (REQUEST_URI) to wp-admin/themes.php, a different vuln
|
16-10-2018 - 16:47 | 15-06-2007 - 01:30 | |
| CVE-2007-3240 | 4.3 |
Cross-site scripting (XSS) vulnerability in 404.php in the Vistered-Little theme for WordPress allows remote attackers to inject arbitrary web script or HTML via the URI (REQUEST_URI) that accesses index.php. NOTE: this can be leveraged for PHP code
|
16-10-2018 - 16:47 | 15-06-2007 - 01:30 | |
| CVE-2007-3241 | 4.3 |
Cross-site scripting (XSS) vulnerability in blogroll.php in the cordobo-green-park theme for WordPress allows remote attackers to inject arbitrary web script or HTML via the PHP_SELF portion of a URI.
|
16-10-2018 - 16:47 | 15-06-2007 - 01:30 | |
| CVE-2007-3239 | 4.3 |
Cross-site scripting (XSS) vulnerability in searchform.php in the AndyBlue theme before 20070607 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PHP_SELF portion of a URI to index.php. NOTE: this can be leveraged
|
16-10-2018 - 16:47 | 15-06-2007 - 01:30 |