CVE-2012-4264

{"id": "CVE-2012-4264", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2012-08-13T22:55:01.083", "references": [{"url": "http://bit51.com/software/better-wp-security/changelog/", "source": "cve@mitre.org"}, {"url": "http://plugins.trac.wordpress.org/changeset?old_path=%2Fbetter-wp-security&old=542852&new_path=%2Fbetter-wp-security&new=542852", "tags": ["Exploit", "Patch"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in the Better WP Security (better_wp_security) plugin before 3.2.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to \"server variables,\" a different vulnerability than CVE-2012-4263."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de ejecuci\u00f3n de comandos en sitios cruzados (XSS) en el plugin 'Better WP Security' (better_wp_security) para WordPress antes de v3.2.5 permite a atacantes remotos inyectar secuencias de comandos web o HTML a trav\u00e9s de vectores no especificados relacionados con \"variables de servidor\". Se trata una vulnerabilidad diferente a CVE-2012-4263.\r\n"}], "lastModified": "2012-08-14T04:00:00.000", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:bit51:better-wp-security:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD289ADB-0EA2-49BD-8265-01C5268EC3D1", "versionEndIncluding": "3.2.4"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:-:alpha1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "15DF5E1E-881C-43AC-95F7-BE8EB11BE0AB"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:-:alpha10:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F18CEC5E-0A32-44D8-9E22-8B857DAD3133"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:-:alpha11:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "568C3E87-7AFD-465F-972D-7E956C53FA48"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:-:alpha2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1AC43B43-2D13-4F89-B606-BE0663419396"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:-:alpha3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B38F0642-2833-4FAB-B937-5FE6217E08CD"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:-:alpha4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "136E3C16-0FA0-4A1D-8339-C251D81B8BB7"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:-:alpha5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FBFD9A86-F456-46B8-943F-FE5D47212411"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:-:alpha6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0B910013-BCA8-42B8-9479-9E30A6C9090C"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:-:alpha7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4EEF5DA7-A0BF-4C66-9FF8-85157C60BA16"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:-:alpha8:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "141D1897-16E2-4C64-9C24-242EE70ACA16"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:-:alpha9:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6F90BEB2-5E00-44EF-AAC0-E4D4E2DBCB03"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:0.1:alpha:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EE574A4D-0D5F-4886-A2A0-F3DF4457D596"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:0.1:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3151C4D9-98C2-47F3-BC99-E3F3B9F57F65"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:0.2:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41CD8677-F8C1-4843-A5E4-634C38BDF8A3"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:0.3:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF896294-800A-4EE1-BFF2-A9C992A8F075"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:0.4:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2AD1425C-C6AF-4EFD-A0E8-99D3D210B0FB"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:0.5:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "22FB621C-F310-4B9F-A3FF-A4225199DF3E"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:0.6:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F51A8704-73FB-4B23-9422-A11832626EE5"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:0.7:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E13924F0-8CDA-4D18-A423-DC7362249BA5"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:0.8:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "60042CD4-3527-4C1F-90E1-EEE89140B84A"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:0.9:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3E07A3C-6621-4FB2-89BD-CAF0565787A9"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:0.10:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "904BAF9D-66EE-4703-B5BE-D55A5AA50493"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:0.11:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "960AD1A5-302F-4B0F-BD9C-B06BC18777FC"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:0.13:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "448A5C8D-497E-448E-BA00-4F46A788160A"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:0.14:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A16B0B65-BBCE-42ED-84F3-8BC89789BD66"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:0.15:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E86C0DA-4C14-46F5-AAB4-A87A30D447DC"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:0.16:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "08EA28D0-A8DE-4742-B94C-06087CD484ED"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BE57115A-4D74-4659-9DF9-D4BD3E2171D0"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "51A3D8FF-506A-427B-BA65-80A2C5B9C634"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F88FAEC8-894E-4915-A697-CE143777C58C"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6F7190B9-DD1F-4C4B-BFDC-45BBD3DABAED"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:1.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CBFB5FE1-6D7F-4FCE-A262-EFF7AFED89A5"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:1.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D9D026B8-1D64-42A1-911F-156F963F8074"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:1.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1CAF8E91-FAC8-42B0-9FF0-04931EACAFBD"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:1.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "29C02177-49AC-44F8-BE2A-62FB99773F6C"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:1.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCB53453-DDE4-4F9A-ACF4-DFD158FF42FF"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:1.8.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5ED17B1A-AF5C-4A33-B6B7-143DEF80F22E"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:1.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5A44A3AC-B458-4DBF-A5A9-AD6970997C8C"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F9F57345-4FFB-4665-819C-E4B5C0415B29"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "85CB091A-F9C2-4757-B76D-D812222881BD"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCF5D0F9-A3C8-4611-9127-1AC097EA9A5F"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7EA8ABA9-AC31-49B5-8F66-5BAC0C677B4D"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9DCB48EE-DA9E-432E-92B9-E41D8F1F2100"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6C240700-D480-4161-9E04-20A546DE3923"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CAC22ED4-A7EC-4F2B-93DB-4F404B4E70FE"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC911E45-C939-4A99-85B0-FAE1686E6E10"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6EADF84F-B8C1-47F4-B7B1-5E35F3EF80C3"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4EC058F4-F148-4A75-834F-D1FEB2EC9284"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5CDEAA24-C336-4E7E-885D-98ADB10542AE"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "18031033-01A4-409B-82C1-0B7DCB6292C8"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5B1C844A-1A13-46E2-99D6-3941AB6BD949"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0F286BD8-27C8-4931-A939-D5BEF0260BA8"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3B65A00-C937-45D9-8293-FA9F64F1DC4D"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D4B4690-8511-490A-BB54-170B08537636"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "54D2CB69-44DA-4B4B-AC54-52791D797FB3"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C0D090B-43AE-4C30-B1E9-8C5A29AECA34"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:2.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95326200-4C92-4CD0-B29A-50635170854C"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CF278881-C1FE-4758-A847-846576491EF1"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2D5AC8F-0DEA-4E6A-92D2-7AC0BE1C3D65"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "479EE262-7BA6-4090-95A8-FA4C74AFC5D2"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F8000058-6F52-47DE-BD8F-6C7192D23948"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2CBB8546-6A0A-4FB7-8A5D-B0A7041643F4"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1EE8226D-8360-43B4-87E0-0F7BC628945C"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF83D2F0-6912-4945-B3D3-24AFB203A5AB"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "653E7131-7DFB-4117-B420-160B2D15E87A"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.0.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F4E3DF4B-8D38-4273-BEB2-C371A5B79560"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.0.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B567B860-BA79-4E02-BE30-05AE4C58E212"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.0.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1A9F1B6-0AF9-4086-8FFA-22C252DB9202"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.0.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "17E76B6E-E087-4F3D-BDBB-187225D5B9E0"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.0.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5A5D0FA8-4D8E-41DB-A152-29EA500A52A6"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DFF4FF53-1DA5-45AF-924C-156D6A019136"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DA4F93D2-E669-462A-8A45-2551F143E00D"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4FFD9EB-7046-4BB8-BBA0-5121198CB8CD"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "19B3DDC7-D8E3-4F44-98C2-827F08260DFC"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A18561D4-72F0-466F-B7C6-2E791163A20A"}, {"criteria": "cpe:2.3:a:bit51:better-wp-security:3.2.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8212DE1B-615D-4915-A43C-67752C8D60E4"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:wordpress:wordpress:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A77EB0E7-7FA7-4232-97DF-7C7587D163F1"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}