CVE-2009-4169
Published Dec 2, 2009
Last updated 14 years ago
Overview
- Description
- Cross-site scripting (XSS) vulnerability in wp-cumulus.php in the WP-Cumulus Plug-in before 1.22 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-79
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "847DA578-4655-477E-8A6F-99FBE738E4F9"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CC63F8C3-E512-4202-A556-4AF5AE4D2161",
"versionEndIncluding": "1.21"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.00:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "50856F71-3148-477F-9334-DAA4EB7BA964"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CF4396AF-A789-4FED-9704-6C531ABF6485"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.01:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "49E2F3B3-943A-4515-9EA3-A09CF65D69E1"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.02:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "181EFDE7-C6EA-4792-9FF2-1F2AD1331CE4"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.03:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6D07BA76-B594-4DA5-869B-6D7255DCFC95"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.04:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "20817C42-7191-442A-95C0-708E28344895"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.05:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BA6B286E-1492-49EC-A494-A38CE9E054C1"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "76149C25-8E5D-40E8-A3E7-330FEA8FE7CD"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FB62428F-23AB-4E6E-89CE-20CAA2370CE1"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "29ECAEF7-9265-4859-ACBE-C05BA2AF28E1"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9BECB654-8EB1-4A4F-A4F4-87D02C3B39F3"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1E64B000-1B3A-4D6D-90B8-6FF41C04A327"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.16:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9A0292FB-7407-48D5-B5DE-55DE24BD6701"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.17:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4EF4D157-9D04-4417-A88A-878AA3FE8639"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DE9586EB-AF75-4666-B3DF-0346F6E7A9CE"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.19:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8D53BB73-4092-4EB9-AC90-1B72D1A5B609"
},
{
"criteria": "cpe:2.3:a:roytanck:wp-cumulus:1.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5992564E-4384-4D73-A9C5-C74ABB691AC0"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]