WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2008-0618 - Vulnerability Database

WordPress

WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2008-0618

Medium

Reference: CVE-2008-0618

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2008-0618

Title: WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability

Overview:

Multiple cross-site scripting (XSS) vulnerabilities in the DMSGuestbook 1.8.0 and 1.7.0 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) gbname (2) gbemail (3) gburl and (4) gbmsg parameters to unspecified programs. NOTE: the provenance of this information is unknown the details are obtained solely from third party information.