Medium Published: Jan 10, 2008 Modified: Apr 09, 2025

CVE-2007-6677

4.3 CVSS SCORE

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Description

Cross-site scripting (XSS) vulnerability in Peter's Random Anti-Spam Image 0.2.4 and earlier plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the comment field in the comment form.

CVSS Vector Details

Attack Vector Network

Attack Complexity M

Confidentiality None

Integrity P

Availability None

Affected Software Configurations

a peters_software random_anti-spam_image * * * * * wordpress * *

Weaknesses (CWE)

CWE-79

References & External Links

http://osvdb.org/43444
http://websecurity.com.ua/1535/
http://osvdb.org/43444
http://websecurity.com.ua/1535/

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More

← Back to CVE Tracker