CVE-2011-5192 (GCVE-0-2011-5192)
Vulnerability from cvelistv5
Published
2012-09-23 17:00
Modified
2024-09-16 16:24
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Cross-site scripting (XSS) vulnerability in pretty-bar.php in Pretty Link Lite plugin before 1.5.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5191.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T00:30:46.876Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://plugins.trac.wordpress.org/changeset/485819/pretty-link"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://wordpress.org/extend/plugins/pretty-link/changelog/"
},
{
"name": "47456",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/47456"
},
{
"name": "51306",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/51306"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in pretty-bar.php in Pretty Link Lite plugin before 1.5.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5191."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2012-09-23T17:00:00Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://plugins.trac.wordpress.org/changeset/485819/pretty-link"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://wordpress.org/extend/plugins/pretty-link/changelog/"
},
{
"name": "47456",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/47456"
},
{
"name": "51306",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/51306"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2011-5192",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting (XSS) vulnerability in pretty-bar.php in Pretty Link Lite plugin before 1.5.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5191."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://plugins.trac.wordpress.org/changeset/485819/pretty-link",
"refsource": "CONFIRM",
"url": "http://plugins.trac.wordpress.org/changeset/485819/pretty-link"
},
{
"name": "http://wordpress.org/extend/plugins/pretty-link/changelog/",
"refsource": "CONFIRM",
"url": "http://wordpress.org/extend/plugins/pretty-link/changelog/"
},
{
"name": "47456",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/47456"
},
{
"name": "51306",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/51306"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2011-5192",
"datePublished": "2012-09-23T17:00:00Z",
"dateReserved": "2012-09-23T00:00:00Z",
"dateUpdated": "2024-09-16T16:24:03.835Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2011-5192\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2012-09-23T17:55:01.130\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Cross-site scripting (XSS) vulnerability in pretty-bar.php in Pretty Link Lite plugin before 1.5.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5191.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad de ejecuci\u00f3n de comandos en sitios cruzados (XSS) en pretty-Bar.php en el plugin para WordPress Pretty Link Lite antes de v1.5.6 permite a atacantes remotos inyectar secuencias de comandos web o HTML a trav\u00e9s del par\u00e1metro slug. Se trata de una vulnerabilidad diferente a CVE-2011-5191a\\r\\n\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.5.5\",\"matchCriteriaId\":\"C77DB58B-9608-4524-9941-0EDDEA7E309C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"29258A56-0647-4B0F-8399-36D324C545EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"061B8C5D-0367-426D-B5A4-1AE70C849380\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"23E01217-2FC9-49B1-8F7D-865AB1A2C072\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"742E4733-B2DD-48E6-8611-C92EA5DB8D0E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"94786AA5-42B0-40FA-BB11-B79526FAB5DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BDD55978-6258-4A49-AEAD-E6A6D5C24581\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF5AEBE2-E173-4915-8A0B-4D89B3FD64F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A02F331C-0390-42A6-926E-F81CA561E6D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"54DE6BF3-69B8-4879-A513-77717A8AF131\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9933EF1-C43D-4974-A0C2-D36998534004\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"163A7B71-CFFA-4EEF-8231-F48A8BA734FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B6A0A68D-7B55-4B4B-BF78-13DA047BDC9E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.24:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF85EAB6-B3DD-4293-BDEF-62EE2612F7CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.25:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"13858F3E-6546-4205-9694-605BFC680758\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB970629-080A-4C48-A87C-12B812F12E5C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AE75F3BD-7FAD-4E7C-9AC3-B60958D38838\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F261B59-541F-4C01-93DB-644B55546770\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5F4A323-7357-4299-86AB-47B89F847FA7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"862A2AA4-13F9-4E88-8C25-33E8D817595E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F1AD288-2645-443E-8DAC-FA41F78B5728\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BFCA6D13-A06B-4BF7-8C47-E64D38EF6DB7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B05A25D3-9507-44AF-AF79-474E8767599F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA0FB86D-3EA1-496C-82BA-17D143BE8A43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"64E54180-2533-44AE-B336-17057DC369FD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.36:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB01473F-66D7-4CDD-9A0C-7EF1B84EA10D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.38:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B3CA3533-23E3-4474-931F-1A6563E39CC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.39:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9803564E-792F-4C3A-866B-CA4CFBCCEFE1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.41:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA457EFF-B5EC-4253-BD1A-068477DE2791\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.42:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"96EB8D18-8B9D-498C-80C3-1EECA33EB684\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.43:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63A50AAE-2146-44C2-A628-55948A8B8891\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.44:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F2CBD02-319D-4BFF-819B-519370371724\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.45:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0EDE9C76-DED1-4BEA-B34C-B4F00EF0AA1D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.46:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1BBFE171-5582-40D4-B6DD-92FA746CBC61\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.47:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C223B565-EF84-4168-A45C-718359D22465\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.48:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"41D55048-BC97-43DA-99F1-23FF0B04FE6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.49:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F76C36ED-B076-49B3-9B83-5B86E504E9A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.50:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9D6EA1F9-57C6-46EE-9F96-4F345A9D768A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.51:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"858A7789-0459-4813-AF9C-E5D19A1A1E38\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.52:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"563373E9-3F87-4E63-868A-8D08617416AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.53:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D55B2167-BD65-4B4F-8545-2161307AF4F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.55:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9B595AC4-8582-4C04-ACC1-45611B6C8A5D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.56:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6302B9E-7A4F-4C3C-9B74-B414840C3986\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C51C6083-2CDB-4FFF-B6EF-B8C3394DD1AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FDC65730-29E6-4778-80F4-0C02D7E2F032\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97B70B8B-6F32-4C23-BB46-1DA18C17DF0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.5.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C310ABBB-2C01-4FAD-B459-C12A15D37FB9\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:wordpress:wordpress:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A77EB0E7-7FA7-4232-97DF-7C7587D163F1\"}]}]}],\"references\":[{\"url\":\"http://plugins.trac.wordpress.org/changeset/485819/pretty-link\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Patch\"]},{\"url\":\"http://secunia.com/advisories/47456\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://wordpress.org/extend/plugins/pretty-link/changelog/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/51306\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://plugins.trac.wordpress.org/changeset/485819/pretty-link\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Patch\"]},{\"url\":\"http://secunia.com/advisories/47456\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://wordpress.org/extend/plugins/pretty-link/changelog/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/51306\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…