VULHUB ™

Wordpress is reported prone to multiple cross-site scripting and SQL injection vulnerabilities. These issues arise due to insufficient sanitization of user-supplied data. These issues were previously reported in Wordpress Multiple Cross-Site Scripting, HTML Injection, And SQL Injection Vulnerabilities (BID 11984). Subsequent to the release of BID 11984, the vendor released Wordpress 1.2.2 to address the issues. It is reported that Wordpress 1.2.2 does not address all the issues specified in that BID and it is still vulnerable to some cross-site scripting and SQL injection issues.

Wordpress is reported prone to multiple cross-site scripting and SQL injection vulnerabilities. These issues arise due to insufficient sanitization of user-supplied data. These issues were previously reported in Wordpress Multiple Cross-Site Scripting, HTML Injection, And SQL Injection Vulnerabilities (BID 11984). Subsequent to the release of BID 11984, the vendor released Wordpress 1.2.2 to address the issues. It is reported that Wordpress 1.2.2 does not address all the issues specified in that BID and it is still vulnerable to some cross-site scripting and SQL injection issues.