CVE-2007-4481

Currently unrated

Key Information:

Vendor: Wordpress
Status: Blix
Vendor: CVE Published:; 22 August 2007

Summary

Cross-site scripting (XSS) vulnerability in index.php in the (1) Blix 0.9.1 and (2) Blix 0.9.1 Rus themes for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF).

References

http://websecurity.com.ua/1248/

x_refsource_MISC

http://www.securityfocus.com/archive/1/477253/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://securityvulns.ru/Rdocument825.html

x_refsource_MISC

Timeline

Vulnerability published
Aug 22, 2007
Vulnerability Reserved
Aug 22, 2007