CVE-2007-5710

Wordpress - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in wp-admin/edit-post-rows.php in WordPress 2.3 allows remote attackers to inject arbitrary web script or HTML via the posts_columns array parameter.

Exploits (1)

exploitdb WRITEUP VERIFIED
by waraxe · textwebappsphp
https://www.exploit-db.com/exploits/30715

References (8)

Scores

EPSS 0.0334
EPSS Percentile 87.1%

Classification

CWE
CWE-79
Status draft

Affected Products (1)

wordpress/wordpress

Timeline

Published Oct 30, 2007
Tracked Since Feb 18, 2026