Search

Find a vulnerability

Search criteria

    2 vulnerabilities by fractalia

    CVE-2011-5106 (GCVE-0-2011-5106)

    Vulnerability from nvd – Published: 2012-08-23 20:00 – Updated: 2024-08-07 00:23
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in edit-post.php in the Flexible Custom Post Type plugin before 0.1.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    Date Public
    2011-11-16 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T00:23:40.203Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "flexiblecustomposttype-editpost-xss(71415)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71415"
              },
              {
                "name": "50719",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/50719"
              },
              {
                "name": "20111116 wordpress Flexible Custom Post Type plugin Xss Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/520542/100/0/threaded"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://wordpress.org/extend/plugins/flexible-custom-post-type/changelog/"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://plugins.trac.wordpress.org/changeset?reponame=\u0026new=466252%40flexible-custom-post-type\u0026old=465583%40flexible-custom-post-type"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2011-11-16T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in edit-post.php in the Flexible Custom Post Type plugin before 0.1.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-09T18:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "flexiblecustomposttype-editpost-xss(71415)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71415"
            },
            {
              "name": "50719",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/50719"
            },
            {
              "name": "20111116 wordpress Flexible Custom Post Type plugin Xss Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/520542/100/0/threaded"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://wordpress.org/extend/plugins/flexible-custom-post-type/changelog/"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://plugins.trac.wordpress.org/changeset?reponame=\u0026new=466252%40flexible-custom-post-type\u0026old=465583%40flexible-custom-post-type"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2011-5106",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in edit-post.php in the Flexible Custom Post Type plugin before 0.1.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "flexiblecustomposttype-editpost-xss(71415)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71415"
                },
                {
                  "name": "50719",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/50719"
                },
                {
                  "name": "20111116 wordpress Flexible Custom Post Type plugin Xss Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/520542/100/0/threaded"
                },
                {
                  "name": "http://wordpress.org/extend/plugins/flexible-custom-post-type/changelog/",
                  "refsource": "CONFIRM",
                  "url": "http://wordpress.org/extend/plugins/flexible-custom-post-type/changelog/"
                },
                {
                  "name": "http://plugins.trac.wordpress.org/changeset?reponame=\u0026new=466252%40flexible-custom-post-type\u0026old=465583%40flexible-custom-post-type",
                  "refsource": "CONFIRM",
                  "url": "http://plugins.trac.wordpress.org/changeset?reponame=\u0026new=466252%40flexible-custom-post-type\u0026old=465583%40flexible-custom-post-type"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2011-5106",
        "datePublished": "2012-08-23T20:00:00.000Z",
        "dateReserved": "2012-08-23T00:00:00.000Z",
        "dateUpdated": "2024-08-07T00:23:40.203Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2011-5106 (GCVE-0-2011-5106)

    Vulnerability from cvelistv5 – Published: 2012-08-23 20:00 – Updated: 2024-08-07 00:23
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in edit-post.php in the Flexible Custom Post Type plugin before 0.1.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    Date Public
    2011-11-16 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T00:23:40.203Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "flexiblecustomposttype-editpost-xss(71415)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71415"
              },
              {
                "name": "50719",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/50719"
              },
              {
                "name": "20111116 wordpress Flexible Custom Post Type plugin Xss Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/520542/100/0/threaded"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://wordpress.org/extend/plugins/flexible-custom-post-type/changelog/"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://plugins.trac.wordpress.org/changeset?reponame=\u0026new=466252%40flexible-custom-post-type\u0026old=465583%40flexible-custom-post-type"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2011-11-16T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in edit-post.php in the Flexible Custom Post Type plugin before 0.1.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-09T18:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "flexiblecustomposttype-editpost-xss(71415)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71415"
            },
            {
              "name": "50719",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/50719"
            },
            {
              "name": "20111116 wordpress Flexible Custom Post Type plugin Xss Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/520542/100/0/threaded"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://wordpress.org/extend/plugins/flexible-custom-post-type/changelog/"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://plugins.trac.wordpress.org/changeset?reponame=\u0026new=466252%40flexible-custom-post-type\u0026old=465583%40flexible-custom-post-type"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2011-5106",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in edit-post.php in the Flexible Custom Post Type plugin before 0.1.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "flexiblecustomposttype-editpost-xss(71415)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71415"
                },
                {
                  "name": "50719",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/50719"
                },
                {
                  "name": "20111116 wordpress Flexible Custom Post Type plugin Xss Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/520542/100/0/threaded"
                },
                {
                  "name": "http://wordpress.org/extend/plugins/flexible-custom-post-type/changelog/",
                  "refsource": "CONFIRM",
                  "url": "http://wordpress.org/extend/plugins/flexible-custom-post-type/changelog/"
                },
                {
                  "name": "http://plugins.trac.wordpress.org/changeset?reponame=\u0026new=466252%40flexible-custom-post-type\u0026old=465583%40flexible-custom-post-type",
                  "refsource": "CONFIRM",
                  "url": "http://plugins.trac.wordpress.org/changeset?reponame=\u0026new=466252%40flexible-custom-post-type\u0026old=465583%40flexible-custom-post-type"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2011-5106",
        "datePublished": "2012-08-23T20:00:00.000Z",
        "dateReserved": "2012-08-23T00:00:00.000Z",
        "dateUpdated": "2024-08-07T00:23:40.203Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }