CVE-2012-1834

{"id": "CVE-2012-1834", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2014-04-07T15:55:03.860", "references": [{"url": "http://plugins.trac.wordpress.org/changeset/523576/cms-tree-page-view", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/48510", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://wordpress.org/extend/plugins/cms-tree-page-view/changelog/", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.osvdb.org/80573", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/52708", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/74337", "source": "cve@mitre.org"}, {"url": "https://www.htbridge.com/advisory/HTB23083", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://plugins.trac.wordpress.org/changeset/523576/cms-tree-page-view", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/48510", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://wordpress.org/extend/plugins/cms-tree-page-view/changelog/", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.osvdb.org/80573", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/52708", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/74337", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.htbridge.com/advisory/HTB23083", "tags": ["Exploit"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in the cms_tpv_admin_head function in functions.php in the CMS Tree Page View plugin before 0.8.9 for WordPress allows remote attackers to inject arbitrary web script or HTML via the cms_tpv_view parameter to wp-admin/options-general.php."}, {"lang": "es", "value": "Vulnerabilidad de XSS en la funci\u00f3n cms_tpv_admin_head en functions.php en el plugin CMS Tree Page View anterior a 0.8.9 para WordPress permite a atacantes remotos inyectar script Web o HTML arbitrarios a trav\u00e9s del par\u00e1metro cms_tpv_view hacia wp-admin/options-general.php."}], "lastModified": "2025-04-12T10:46:40.837", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:*:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "231B1684-B5E2-4366-B961-063D23F6E3A4", "versionEndIncluding": "0.8.8"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.1:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "413069BD-21C2-40F5-960B-130FFC9EE947"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.1a:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "2D1553E5-3EA6-4552-82C2-D4662462AB25"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.2:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "333F8D91-06FC-42EF-A7A2-68226C6A5B09"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.3:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "F9713986-D854-4D0E-80FF-5E7B890E6BFB"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "50C1ED83-E591-419B-AF2F-AF8DFAB756E6"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.1:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "4D3E53F0-3059-4F3C-A8F2-0632AE908817"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.2:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "3C2EEE37-1D45-444E-B02C-91C854EEF513"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.3:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "698C0E0A-8CC3-4523-977B-7CB46CE6C057"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.4:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "4AC7AA05-71FA-4EB1-B9ED-80209B8EDD08"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.5:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "77A111EC-6E43-4E5D-BCF3-349359B0429A"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.6:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "655C0829-3FDC-4AFB-93FB-8E2AE91F51EF"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.7:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "C9D2AF0D-7CF7-4385-AF28-6AECB028246B"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.8:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "113DCD65-F7D4-4D82-94C5-262171DDAE30"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.9:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "F474DDF8-4121-4370-B63C-A15931DD613F"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.5:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "74ED46BD-24A8-4A1E-B69A-21DD93DE9F8F"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.5.1:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "EBF924E5-ACA2-49F2-A5F1-36A9219285C4"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.5.2:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "66DDBA63-9718-4891-8A6E-4F77366A571F"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.5.3:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "8F51AF88-474E-4D16-916F-CF495F1E055E"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.5.4:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "B50B32BE-8FF8-4CD2-BDEF-7A796A563D02"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.5.5:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "5354911A-9C4F-4037-B611-8DE0F7AA4109"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.5.6:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "9552B085-2C3E-4295-9014-14C818D185F3"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.5.7:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "4470BB00-681E-4B7D-A9B4-D33E9882372A"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.6:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "D1EC6050-115C-48BF-BEB7-35B596916854"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.6.1:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "262CE0D5-A74E-46D4-9C33-FAD77CA9EDAF"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.6.2:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "C731DADF-5E43-47B4-BA79-F6617BB892F1"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.6.3:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "85812DD4-7CEE-466C-A3B3-5BFBE4683DC7"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "7AE76495-A7E2-4191-8588-9A58164F9016"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.1:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "D5B21BCF-D184-4915-9D77-94A1F94F4B7D"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.2:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "4340724C-5050-449A-AD0A-D1552F460620"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.3:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "32D7F845-B24C-4BFE-A27B-5BDFD1BF49ED"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.4:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "177C4352-3B64-4DF3-999E-FEADCEA66E3C"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.5:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "730A2CC9-4AAA-4AE0-908E-79AB0E5B8671"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.6:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "3D9AB355-D639-4853-AA5C-B1297141A609"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.7:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "7572AB9C-B00A-42AD-A890-3157A53F470D"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.8:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "036538F8-D1E8-4B80-B4B8-0119F659D37B"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.9:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "8709D5C2-5999-4516-9BAF-F9A6F5F1E75B"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.10:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "9B684B0C-6A96-4D8D-906E-5FC0BE83D746"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.11:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "06D2F0E8-CD0E-4202-B57B-B724A043C9E1"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.12:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "212D4174-6A22-4E64-B6BB-E819E2E4F973"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.13:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "CBC6D453-6025-4FD3-B6D2-A5FF4668F5DE"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.14:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "C7243CA2-A67D-4D62-ADBD-09B8CBAAD353"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.15:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "15BF2206-C356-4D81-9CA5-11AE604111AB"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.16:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "EBBEEB6E-FE56-440E-BBAA-9ECEE2678BCB"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.17:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "11D75FC4-8AAF-4C63-96AE-883FDA3D22EE"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.18:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "B44B7646-9BD0-40CA-9C82-7F9BA363F045"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.19:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "312A1044-7EC5-4FA9-9026-5CEF328EECAD"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.20:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "7D6612AD-12DE-4888-878F-C29B46AC9E79"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.8:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "88291848-420B-47A4-8B3B-9A0DBFB8EDEC"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.8.1:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "6EC991D6-E241-4B9E-8102-13579DC58BDF"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.8.2:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "1C528946-A2C2-40A4-9249-8641AEF37E16"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.8.3:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "F012B06C-6E5E-42B2-80FC-C4AA2D9B4838"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.8.4:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "E4A57510-F5C8-4E62-B731-F644D289C2CD"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.8.5:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "C63DEA64-2E8F-43B7-9C44-A645D6CF2099"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.8.6:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "7C03AB33-96FA-4586-97DE-0A11A09AACBB"}, {"criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.8.7:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "BC6468DE-B43D-4943-B2B7-507B90669D78"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}