CVE-2012-0895

Currently unrated

Key Information:

Vendor: Wordpress
Status: Count Per Day
Vendor: CVE Published:; 20 January 2012

Summary

Cross-site scripting (XSS) vulnerability in map/map.php in the Count Per Day module before 3.1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the map parameter.

References

http://wordpress.org/extend/plugins/count-per-day/changelog/

x_refsource_CONFIRM

http://www.exploit-db.com/exploits/18355

exploitx_refsource_EXPLOIT-DB

http://plugins.trac.wordpress.org/changeset/488883/count-...

x_refsource_CONFIRM

Timeline

Vulnerability published
Jan 20, 2012
Vulnerability Reserved
Jan 20, 2012