1 results (0.004 seconds)
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0
CVE-2006-10001 – Subscribe to Comments Plugin subscribe-to-comments.php cross site scripting
https://notcve.org/view.php?id=CVE-2006-10001
A vulnerability, which was classified as problematic, was found in Subscribe to Comments Plugin up to 2.0.7 on WordPress. This affects an unknown part of the file subscribe-to-comments.php. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 2.0.8 is able to address this issue. • https://github.com/wp-plugins/subscribe-to-comments/commit/9683bdf462fcac2f32b33be98f0b96497fbd1bb6 https://github.com/wp-plugins/subscribe-to-comments/releases/tag/2.0.8 https://vuldb.com/?ctiid.222321 https://vuldb.com/?id.222321 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •