CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 1CVE-2010-4630 – WP Survey And Quiz Tool < 1.3 - Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2010-4630
Cross-site scripting (XSS) vulnerability in pages/admin/surveys/create.php in the WP Survey And Quiz Tool plugin 1.2.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the action parameter. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en pages/admin/surveys/create.php del complemento WP Survey And Quiz Tool 1.2.1 de WordPress. Permite a usuarios remotos inyectar codigo de script web o código HTML de su elección a través del parámetro action. • http://osvdb.org/69074 http://packetstormsecurity.org/1011-exploits/wpsurvey-xss.txt http://secunia.com/advisories/42196 http://www.johnleitch.net/Vulnerabilities/WordPress.Survery.And.Quiz.Tool.1.2.1.Reflected.Cross-site.Scripting/57 https://exchange.xforce.ibmcloud.com/vulnerabilities/63056 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •