Lucene search

MitreCVELIST:CVE-2011-5192

HistorySep 23, 2012 - 5:00 p.m.

CVE-2011-5192

2012-09-2317:00:00

mitre

www.cve.org

cve-2011-5192

cross-site scripting

pretty link lite plugin

wordpress

remote attackers

web script

html

slug parameter

AI Score

5.7

Confidence

High

EPSS

0.002

Percentile

64.9%

JSON

Cross-site scripting (XSS) vulnerability in pretty-bar.php in Pretty Link Lite plugin before 1.5.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5191.

References

plugins.trac.wordpress.org/changeset/485819/pretty-link

secunia.com/advisories/47456

wordpress.org/extend/plugins/pretty-link/changelog/

www.securityfocus.com/bid/51306