Lucene search

[email protected]NVD:CVE-2011-5192

HistorySep 23, 2012 - 5:55 p.m.

CVE-2011-5192

2012-09-2317:55:01

CWE-79

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.002

Percentile

64.9%

JSON

Cross-site scripting (XSS) vulnerability in pretty-bar.php in Pretty Link Lite plugin before 1.5.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5191.

Affected configurations

Nvd

Node

blairwilliamspretty_link_lite_pluginRange≤1.5.5

blairwilliamspretty_link_lite_pluginMatch1.4.12

blairwilliamspretty_link_lite_pluginMatch1.4.13

blairwilliamspretty_link_lite_pluginMatch1.4.14

blairwilliamspretty_link_lite_pluginMatch1.4.15

blairwilliamspretty_link_lite_pluginMatch1.4.16

blairwilliamspretty_link_lite_pluginMatch1.4.17

blairwilliamspretty_link_lite_pluginMatch1.4.18

blairwilliamspretty_link_lite_pluginMatch1.4.19

blairwilliamspretty_link_lite_pluginMatch1.4.20

blairwilliamspretty_link_lite_pluginMatch1.4.21

blairwilliamspretty_link_lite_pluginMatch1.4.22

blairwilliamspretty_link_lite_pluginMatch1.4.23

blairwilliamspretty_link_lite_pluginMatch1.4.24

blairwilliamspretty_link_lite_pluginMatch1.4.25

blairwilliamspretty_link_lite_pluginMatch1.4.26

blairwilliamspretty_link_lite_pluginMatch1.4.27

blairwilliamspretty_link_lite_pluginMatch1.4.28

blairwilliamspretty_link_lite_pluginMatch1.4.29

blairwilliamspretty_link_lite_pluginMatch1.4.30

blairwilliamspretty_link_lite_pluginMatch1.4.31

blairwilliamspretty_link_lite_pluginMatch1.4.32

blairwilliamspretty_link_lite_pluginMatch1.4.33

blairwilliamspretty_link_lite_pluginMatch1.4.34

blairwilliamspretty_link_lite_pluginMatch1.4.35

blairwilliamspretty_link_lite_pluginMatch1.4.36

blairwilliamspretty_link_lite_pluginMatch1.4.38

blairwilliamspretty_link_lite_pluginMatch1.4.39

blairwilliamspretty_link_lite_pluginMatch1.4.41

blairwilliamspretty_link_lite_pluginMatch1.4.42

blairwilliamspretty_link_lite_pluginMatch1.4.43

blairwilliamspretty_link_lite_pluginMatch1.4.44

blairwilliamspretty_link_lite_pluginMatch1.4.45

blairwilliamspretty_link_lite_pluginMatch1.4.46

blairwilliamspretty_link_lite_pluginMatch1.4.47

blairwilliamspretty_link_lite_pluginMatch1.4.48

blairwilliamspretty_link_lite_pluginMatch1.4.49

blairwilliamspretty_link_lite_pluginMatch1.4.50

blairwilliamspretty_link_lite_pluginMatch1.4.51

blairwilliamspretty_link_lite_pluginMatch1.4.52

blairwilliamspretty_link_lite_pluginMatch1.4.53

blairwilliamspretty_link_lite_pluginMatch1.4.55

blairwilliamspretty_link_lite_pluginMatch1.4.56

blairwilliamspretty_link_lite_pluginMatch1.5.0

blairwilliamspretty_link_lite_pluginMatch1.5.1

blairwilliamspretty_link_lite_pluginMatch1.5.2

blairwilliamspretty_link_lite_pluginMatch1.5.4

AND

wordpresswordpressMatch-

VendorProductVersionCPE
blairwilliamspretty_link_lite_plugin*cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:*:*:*:*:*:*:*:*
blairwilliamspretty_link_lite_plugin1.4.12cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.12:*:*:*:*:*:*:*
blairwilliamspretty_link_lite_plugin1.4.13cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.13:*:*:*:*:*:*:*
blairwilliamspretty_link_lite_plugin1.4.14cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.14:*:*:*:*:*:*:*
blairwilliamspretty_link_lite_plugin1.4.15cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.15:*:*:*:*:*:*:*
blairwilliamspretty_link_lite_plugin1.4.16cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.16:*:*:*:*:*:*:*
blairwilliamspretty_link_lite_plugin1.4.17cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.17:*:*:*:*:*:*:*
blairwilliamspretty_link_lite_plugin1.4.18cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.18:*:*:*:*:*:*:*
blairwilliamspretty_link_lite_plugin1.4.19cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.19:*:*:*:*:*:*:*
blairwilliamspretty_link_lite_plugin1.4.20cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.20:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
blairwilliams	pretty_link_lite_plugin	*	cpe:2.3:a:blairwilliams:pretty_link_lite_plugin::::::::
blairwilliams	pretty_link_lite_plugin	1.4.12	cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.12:::::::*
blairwilliams	pretty_link_lite_plugin	1.4.13	cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.13:::::::*
blairwilliams	pretty_link_lite_plugin	1.4.14	cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.14:::::::*
blairwilliams	pretty_link_lite_plugin	1.4.15	cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.15:::::::*
blairwilliams	pretty_link_lite_plugin	1.4.16	cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.16:::::::*
blairwilliams	pretty_link_lite_plugin	1.4.17	cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.17:::::::*
blairwilliams	pretty_link_lite_plugin	1.4.18	cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.18:::::::*
blairwilliams	pretty_link_lite_plugin	1.4.19	cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.19:::::::*
blairwilliams	pretty_link_lite_plugin	1.4.20	cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.20:::::::*

Rows per page:

1-10 of 481

References

plugins.trac.wordpress.org/changeset/485819/pretty-link

secunia.com/advisories/47456

wordpress.org/extend/plugins/pretty-link/changelog/

www.securityfocus.com/bid/51306

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.002

Percentile

64.9%

JSON

Related for NVD:CVE-2011-5192

prion2 cvelist2 cve2 nvd1 patchstack2