fkie_cve-2011-5191
Vulnerability from fkie_nvd
Published
2012-09-23 17:55
Modified
2025-04-11 00:51
Severity ?
Summary
Cross-site scripting (XSS) vulnerability in pretty-bar.php in Pretty Link Lite plugin before 1.5.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5192.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:*:*:*:*:*:*:*:*",
"matchCriteriaId": "675E0623-2A70-4048-9FE6-166164866A43",
"versionEndIncluding": "1.5.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.12:*:*:*:*:*:*:*",
"matchCriteriaId": "29258A56-0647-4B0F-8399-36D324C545EA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.13:*:*:*:*:*:*:*",
"matchCriteriaId": "061B8C5D-0367-426D-B5A4-1AE70C849380",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.14:*:*:*:*:*:*:*",
"matchCriteriaId": "23E01217-2FC9-49B1-8F7D-865AB1A2C072",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.15:*:*:*:*:*:*:*",
"matchCriteriaId": "742E4733-B2DD-48E6-8611-C92EA5DB8D0E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.16:*:*:*:*:*:*:*",
"matchCriteriaId": "94786AA5-42B0-40FA-BB11-B79526FAB5DA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.17:*:*:*:*:*:*:*",
"matchCriteriaId": "BDD55978-6258-4A49-AEAD-E6A6D5C24581",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.18:*:*:*:*:*:*:*",
"matchCriteriaId": "FF5AEBE2-E173-4915-8A0B-4D89B3FD64F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.19:*:*:*:*:*:*:*",
"matchCriteriaId": "A02F331C-0390-42A6-926E-F81CA561E6D3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.20:*:*:*:*:*:*:*",
"matchCriteriaId": "54DE6BF3-69B8-4879-A513-77717A8AF131",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.21:*:*:*:*:*:*:*",
"matchCriteriaId": "F9933EF1-C43D-4974-A0C2-D36998534004",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.22:*:*:*:*:*:*:*",
"matchCriteriaId": "163A7B71-CFFA-4EEF-8231-F48A8BA734FA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.23:*:*:*:*:*:*:*",
"matchCriteriaId": "B6A0A68D-7B55-4B4B-BF78-13DA047BDC9E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.24:*:*:*:*:*:*:*",
"matchCriteriaId": "CF85EAB6-B3DD-4293-BDEF-62EE2612F7CB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.25:*:*:*:*:*:*:*",
"matchCriteriaId": "13858F3E-6546-4205-9694-605BFC680758",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.26:*:*:*:*:*:*:*",
"matchCriteriaId": "FB970629-080A-4C48-A87C-12B812F12E5C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.27:*:*:*:*:*:*:*",
"matchCriteriaId": "AE75F3BD-7FAD-4E7C-9AC3-B60958D38838",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.28:*:*:*:*:*:*:*",
"matchCriteriaId": "5F261B59-541F-4C01-93DB-644B55546770",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.29:*:*:*:*:*:*:*",
"matchCriteriaId": "A5F4A323-7357-4299-86AB-47B89F847FA7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.30:*:*:*:*:*:*:*",
"matchCriteriaId": "862A2AA4-13F9-4E88-8C25-33E8D817595E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.31:*:*:*:*:*:*:*",
"matchCriteriaId": "2F1AD288-2645-443E-8DAC-FA41F78B5728",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.32:*:*:*:*:*:*:*",
"matchCriteriaId": "BFCA6D13-A06B-4BF7-8C47-E64D38EF6DB7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.33:*:*:*:*:*:*:*",
"matchCriteriaId": "B05A25D3-9507-44AF-AF79-474E8767599F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.34:*:*:*:*:*:*:*",
"matchCriteriaId": "BA0FB86D-3EA1-496C-82BA-17D143BE8A43",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.35:*:*:*:*:*:*:*",
"matchCriteriaId": "64E54180-2533-44AE-B336-17057DC369FD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.36:*:*:*:*:*:*:*",
"matchCriteriaId": "EB01473F-66D7-4CDD-9A0C-7EF1B84EA10D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.38:*:*:*:*:*:*:*",
"matchCriteriaId": "B3CA3533-23E3-4474-931F-1A6563E39CC8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.39:*:*:*:*:*:*:*",
"matchCriteriaId": "9803564E-792F-4C3A-866B-CA4CFBCCEFE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.41:*:*:*:*:*:*:*",
"matchCriteriaId": "FA457EFF-B5EC-4253-BD1A-068477DE2791",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.42:*:*:*:*:*:*:*",
"matchCriteriaId": "96EB8D18-8B9D-498C-80C3-1EECA33EB684",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.43:*:*:*:*:*:*:*",
"matchCriteriaId": "63A50AAE-2146-44C2-A628-55948A8B8891",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.44:*:*:*:*:*:*:*",
"matchCriteriaId": "5F2CBD02-319D-4BFF-819B-519370371724",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.45:*:*:*:*:*:*:*",
"matchCriteriaId": "0EDE9C76-DED1-4BEA-B34C-B4F00EF0AA1D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.46:*:*:*:*:*:*:*",
"matchCriteriaId": "1BBFE171-5582-40D4-B6DD-92FA746CBC61",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.47:*:*:*:*:*:*:*",
"matchCriteriaId": "C223B565-EF84-4168-A45C-718359D22465",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.48:*:*:*:*:*:*:*",
"matchCriteriaId": "41D55048-BC97-43DA-99F1-23FF0B04FE6D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.49:*:*:*:*:*:*:*",
"matchCriteriaId": "F76C36ED-B076-49B3-9B83-5B86E504E9A2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.50:*:*:*:*:*:*:*",
"matchCriteriaId": "9D6EA1F9-57C6-46EE-9F96-4F345A9D768A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.51:*:*:*:*:*:*:*",
"matchCriteriaId": "858A7789-0459-4813-AF9C-E5D19A1A1E38",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.52:*:*:*:*:*:*:*",
"matchCriteriaId": "563373E9-3F87-4E63-868A-8D08617416AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.53:*:*:*:*:*:*:*",
"matchCriteriaId": "D55B2167-BD65-4B4F-8545-2161307AF4F7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.55:*:*:*:*:*:*:*",
"matchCriteriaId": "9B595AC4-8582-4C04-ACC1-45611B6C8A5D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.56:*:*:*:*:*:*:*",
"matchCriteriaId": "F6302B9E-7A4F-4C3C-9B74-B414840C3986",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C51C6083-2CDB-4FFF-B6EF-B8C3394DD1AC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "FDC65730-29E6-4778-80F4-0C02D7E2F032",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:wordpress:wordpress:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A77EB0E7-7FA7-4232-97DF-7C7587D163F1",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in pretty-bar.php in Pretty Link Lite plugin before 1.5.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5192."
},
{
"lang": "es",
"value": "Vulnerabilidad de ejecuci\u00f3n de secuencias de comandos (XSS) en pretty-bar.php en Pretty Link Lite plugin antes de v1.5.4 para WordPress, permite a atacantes remotos inyectar secuencias de comandos web o HTML a trav\u00e9s del par\u00e1metro slug, una vulnerabilidad diferente de CVE-2011-5192."
}
],
"id": "CVE-2011-5191",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
]
},
"published": "2012-09-23T17:55:01.067",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Patch"
],
"url": "http://plugins.trac.wordpress.org/changeset/473693/pretty-link"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "http://wordpress.org/extend/plugins/pretty-link/changelog/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Patch"
],
"url": "http://plugins.trac.wordpress.org/changeset/473693/pretty-link"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://wordpress.org/extend/plugins/pretty-link/changelog/"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…