CVE-2011-3851

Publication date

2011-09-28 10:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in the News theme before 0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the cpage parameter.