CVE-2007-4014 in Blixed Themeinfo

Summary

Cross-site scripting (XSS) vulnerability in a certain index.php installation script related to the (1) Blix 0.9.1, (2) Blixed 1.0, and (3) BlixKrieg (Blix Krieg) 2.2 themes for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter, possibly a related issue to CVE-2007-2757. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

07/25/2007

Disclosure

07/25/2007

Moderation

VulDB entry created

Entries

VDB-85794 (2)

CPE

ready

CWE

CWE-80 (Confirmed)

CVSS

4.3

EPSS

0.01752

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-4014
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-4014
CVE Details	https://www.cvedetails.com/cve/CVE-2007-4014/

◂ Previous Overview Next ▸