WordPress 3.3.2 – 3.5 Cross-Site Scripting (XSS) (Issue 3)

Affects WordPress

3.5

No known fix

3.4.2

No known fix

3.4.1

No known fix

3.4

No known fix

3.3.3

No known fix

3.3.2

No known fix

References

URL

https://github.com/wpscanteam/wpscan/wiki/WordPress-3.5-Issues

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Verified

No

WPVDB ID

65e6c3cf-0c06-4729-bde7-12af2ef5487b

Timeline

Publicly Published

2014-08-01 (about 9 years ago)

Added

2014-08-01 (about 9 years ago)

Last Updated

2019-10-21 (about 4 years ago)

Other

Published

Title

Published

2015-05-12

Title

Adsense Click Fraud Monitoring <= 1.7.5 - XSS

Published

2024-01-12

Title

WooCommerce < 8.4.0 - Reflected Cross-Site Scripting

Published

2024-05-02

Title

Pet Manager <= 1.4 - Contributor+ Stored XSS

Published

2022-11-02

Title

4ECPS Web Forms <= 0.2.17 - Admin+ Stored XSS

Published

2024-04-29

Title

Admin Page Spider <= 3.31 - Admin+ Stored XSS