CVE-2011-5265
NUCLEIFeaturific For WordPress 1.6.2 - Cross-Site Scripting via snum Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2011-5265. PoCs published by Amir. A Nuclei detection template is also available.
AI-analyzed exploit summary The provided text describes a cross-site scripting (XSS) vulnerability in the Featurific For WordPress plugin, where user-supplied input is not properly sanitized. The vulnerability was later reported as potentially non-exploitable.
Description
Cross-site scripting (XSS) vulnerability in cached_image.php in the Featurific For WordPress plugin 1.6.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the snum parameter. NOTE: this has been disputed by a third party.
Exploits (1)
The provided text describes a cross-site scripting (XSS) vulnerability in the Featurific For WordPress plugin, where user-supplied input is not properly sanitized. The vulnerability was later reported as potentially non-exploitable.