CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
Confidence
High
EPSS
Percentile
64.9%
Cross-site scripting (XSS) vulnerability in pretty-bar.php in Pretty Link Lite plugin before 1.5.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5191.
Vendor | Product | Version | CPE |
---|---|---|---|
blairwilliams | pretty_link_lite_plugin | * | cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:*:*:*:*:*:*:*:* |
blairwilliams | pretty_link_lite_plugin | 1.4.12 | cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.12:*:*:*:*:*:*:* |
blairwilliams | pretty_link_lite_plugin | 1.4.13 | cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.13:*:*:*:*:*:*:* |
blairwilliams | pretty_link_lite_plugin | 1.4.14 | cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.14:*:*:*:*:*:*:* |
blairwilliams | pretty_link_lite_plugin | 1.4.15 | cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.15:*:*:*:*:*:*:* |
blairwilliams | pretty_link_lite_plugin | 1.4.16 | cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.16:*:*:*:*:*:*:* |
blairwilliams | pretty_link_lite_plugin | 1.4.17 | cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.17:*:*:*:*:*:*:* |
blairwilliams | pretty_link_lite_plugin | 1.4.18 | cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.18:*:*:*:*:*:*:* |
blairwilliams | pretty_link_lite_plugin | 1.4.19 | cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.19:*:*:*:*:*:*:* |
blairwilliams | pretty_link_lite_plugin | 1.4.20 | cpe:2.3:a:blairwilliams:pretty_link_lite_plugin:1.4.20:*:*:*:*:*:*:* |