CVE-2009-4169

Cross-site scripting (XSS) vulnerability in wp-cumulus.php in the WP-Cumulus Plug-in before 1.22 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
OR cpe:2.3:a:roytanck:wp-cumulus:*:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.00:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.1:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.01:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.02:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.03:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.04:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.05:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.11:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.12:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.13:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.14:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.15:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.16:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.17:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.18:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.19:*:*:*:*:*:*:*
cpe:2.3:a:roytanck:wp-cumulus:1.20:*:*:*:*:*:*:*

History

No history.

Information

Published : 2009-12-02 18:30

Updated : 2024-02-04 17:33


NVD link : CVE-2009-4169

Mitre link : CVE-2009-4169

CVE.ORG link : CVE-2009-4169


JSON object : View

Products Affected

roytanck

  • wp-cumulus

wordpress

  • wordpress
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')