CVE-2007-1049
WordPress 2.0-2.0.8 and 2.1 - Cross-Site Scripting via wp_explain_nonce Function
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2007-1049. PoCs published by PsychoGun.
AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in WordPress by injecting arbitrary JavaScript code via the 'file' parameter in the templates.php admin page. The vulnerability arises due to insufficient input sanitization.
Description
Cross-site scripting (XSS) vulnerability in the wp_explain_nonce function in the nonce AYS functionality (wp-includes/functions.php) for WordPress 2.0 before 2.0.9 and 2.1 before 2.1.1 allows remote attackers to inject arbitrary web script or HTML via the file parameter to wp-admin/templates.php, and possibly other vectors involving the action variable.
Exploits (1)
This exploit demonstrates a cross-site scripting (XSS) vulnerability in WordPress by injecting arbitrary JavaScript code via the 'file' parameter in the templates.php admin page. The vulnerability arises due to insufficient input sanitization.