CVE-2011-0740
RSS Feed Reader 0.1 for WordPress - Cross-Site Scripting via rss_url Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2011-0740. PoCs published by AutoSec Tools.
AI-analyzed exploit summary The exploit describes a cross-site scripting (XSS) vulnerability in the RSS Feed Reader WordPress Plugin 0.1. It demonstrates how an attacker can inject arbitrary script code via the 'rss_url' parameter in the 'magpie_slashbox.php' script.
Description
Cross-site scripting (XSS) vulnerability in magpie/scripts/magpie_slashbox.php in RSS Feed Reader 0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the rss_url parameter.
Exploits (1)
The exploit describes a cross-site scripting (XSS) vulnerability in the RSS Feed Reader WordPress Plugin 0.1. It demonstrates how an attacker can inject arbitrary script code via the 'rss_url' parameter in the 'magpie_slashbox.php' script.