Vulnerability CVE-2012-2916

Vulnerability CVE-2012-2916

Published: 2012-05-21

Description:

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
DLO -> Simple anti bot registration engine plugin

http://plugins.trac.wordpress.org/changeset?old_path=%2Fsabre&old=534490&new_path=%2Fsabre&new=534490

http://xforce.iss.net/xforce/xfdb/75615

http://www.securityfocus.com/bid/53528

http://wordpress.org/extend/plugins/sabre/changelog/

http://packetstormsecurity.org/files/112692/WordPress-SABRE-1.2.0-Cross-Site-Scripting.html