Cross-Site Scripting Vulnerability in Whois Search Plugin by WordPress
CVE-2011-5193

Currently unrated

Key Information:

Vendor: Wordpress
Status: Samswhois
Vendor: CVE Published:; 23 September 2012

What is CVE-2011-5193?

The Whois Search plugin version 1.4.2.3 for WordPress is susceptible to a cross-site scripting (XSS) vulnerability. When the WHOIS widget is enabled, this flaw allows remote attackers to inject arbitrary web scripts or HTML into the application via the 'domain' parameter passed to 'index.php'. This can lead to unauthorized actions on behalf of users and potential compromise of sensitive information.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/47428

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Sep 23, 2012

JSON

Wordpress

What is CVE-2011-5193?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.