Cross-Site Scripting Vulnerability in Uk Cookie Plugin for WordPress
CVE-2012-5856

Currently unrated

Key Information:

Vendor: Wordpress
Status: Uk-cookie
Vendor: CVE Published:; 17 November 2012

Summary

The Uk Cookie plugin for WordPress is vulnerable to a Cross-Site Scripting (XSS) attack, which enables remote attackers to inject arbitrary web scripts or HTML into web pages. This vulnerability arises from unspecified vectors, allowing malicious users to manipulate site content and potentially hijack sessions or redirect users to unauthorized sites. It is crucial for WordPress site owners utilizing this plugin to address the vulnerability to safeguard their systems and users.

References

http://packetstormsecurity.org/files/118053/WordPress-UK-...

x_refsource_MISC

http://www.securityfocus.com/bid/56509

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/80047

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Nov 17, 2012
Vulnerability Reserved
Nov 12, 2012