CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 2CVE-2011-5107 – Alert Before Your Post <= 0.1.1 - Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2011-5107
Cross-site scripting (XSS) vulnerability in post_alert.php in Alert Before Your Post plugin, possibly 0.1.1 and earlier, for WordPress allows remote attackers to inject arbitrary web script or HTML via the name parameter. Vulnerabilidad de ejecución de comandos en sitios cruzados (XSS) en post_alert.php en el plugin Alert Before Your Post, posiblemente v0.1.1 y anteriores, para Wordpress que permite a atacantes remotos inyectar código web o HTML arbitrario a través del nombre de un parámetro. • https://www.exploit-db.com/exploits/36323 http://www.securityfocus.com/archive/1/520590/100/0/threaded http://www.securityfocus.com/bid/50743 https://exchange.xforce.ibmcloud.com/vulnerabilities/71413 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •