CVE-2012-1834

Published Apr 7, 2014
Last updated 7 years ago
CVSS info 4.3
Overview

Description: Cross-site scripting (XSS) vulnerability in the cms_tpv_admin_head function in functions.php in the CMS Tree Page View plugin before 0.8.9 for WordPress allows remote attackers to inject arbitrary web script or HTML via the cms_tpv_view parameter to wp-admin/options-general.php.
Source: cve@mitre.org
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses

nvd@nist.gov: CWE-79
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:*:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "231B1684-B5E2-4366-B961-063D23F6E3A4",
            "versionEndIncluding": "0.8.8"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.1:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "413069BD-21C2-40F5-960B-130FFC9EE947"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.1a:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2D1553E5-3EA6-4552-82C2-D4662462AB25"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.2:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "333F8D91-06FC-42EF-A7A2-68226C6A5B09"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.3:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F9713986-D854-4D0E-80FF-5E7B890E6BFB"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "50C1ED83-E591-419B-AF2F-AF8DFAB756E6"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.1:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4D3E53F0-3059-4F3C-A8F2-0632AE908817"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.2:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C2EEE37-1D45-444E-B02C-91C854EEF513"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.3:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "698C0E0A-8CC3-4523-977B-7CB46CE6C057"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.4:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4AC7AA05-71FA-4EB1-B9ED-80209B8EDD08"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.5:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "77A111EC-6E43-4E5D-BCF3-349359B0429A"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.6:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "655C0829-3FDC-4AFB-93FB-8E2AE91F51EF"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.7:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C9D2AF0D-7CF7-4385-AF28-6AECB028246B"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.8:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "113DCD65-F7D4-4D82-94C5-262171DDAE30"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.4.9:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F474DDF8-4121-4370-B63C-A15931DD613F"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.5:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74ED46BD-24A8-4A1E-B69A-21DD93DE9F8F"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.5.1:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EBF924E5-ACA2-49F2-A5F1-36A9219285C4"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.5.2:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "66DDBA63-9718-4891-8A6E-4F77366A571F"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.5.3:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8F51AF88-474E-4D16-916F-CF495F1E055E"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.5.4:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B50B32BE-8FF8-4CD2-BDEF-7A796A563D02"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.5.5:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5354911A-9C4F-4037-B611-8DE0F7AA4109"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.5.6:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9552B085-2C3E-4295-9014-14C818D185F3"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.5.7:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4470BB00-681E-4B7D-A9B4-D33E9882372A"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.6:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D1EC6050-115C-48BF-BEB7-35B596916854"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.6.1:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "262CE0D5-A74E-46D4-9C33-FAD77CA9EDAF"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.6.2:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C731DADF-5E43-47B4-BA79-F6617BB892F1"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.6.3:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "85812DD4-7CEE-466C-A3B3-5BFBE4683DC7"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7AE76495-A7E2-4191-8588-9A58164F9016"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.1:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D5B21BCF-D184-4915-9D77-94A1F94F4B7D"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.2:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4340724C-5050-449A-AD0A-D1552F460620"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.3:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "32D7F845-B24C-4BFE-A27B-5BDFD1BF49ED"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.4:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "177C4352-3B64-4DF3-999E-FEADCEA66E3C"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.5:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "730A2CC9-4AAA-4AE0-908E-79AB0E5B8671"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.6:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D9AB355-D639-4853-AA5C-B1297141A609"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.7:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7572AB9C-B00A-42AD-A890-3157A53F470D"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.8:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "036538F8-D1E8-4B80-B4B8-0119F659D37B"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.9:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8709D5C2-5999-4516-9BAF-F9A6F5F1E75B"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.10:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B684B0C-6A96-4D8D-906E-5FC0BE83D746"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.11:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "06D2F0E8-CD0E-4202-B57B-B724A043C9E1"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.12:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "212D4174-6A22-4E64-B6BB-E819E2E4F973"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.13:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CBC6D453-6025-4FD3-B6D2-A5FF4668F5DE"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.14:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C7243CA2-A67D-4D62-ADBD-09B8CBAAD353"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.15:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "15BF2206-C356-4D81-9CA5-11AE604111AB"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.16:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EBBEEB6E-FE56-440E-BBAA-9ECEE2678BCB"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.17:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "11D75FC4-8AAF-4C63-96AE-883FDA3D22EE"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.18:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B44B7646-9BD0-40CA-9C82-7F9BA363F045"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.19:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "312A1044-7EC5-4FA9-9026-5CEF328EECAD"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.7.20:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D6612AD-12DE-4888-878F-C29B46AC9E79"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.8:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88291848-420B-47A4-8B3B-9A0DBFB8EDEC"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.8.1:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6EC991D6-E241-4B9E-8102-13579DC58BDF"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.8.2:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C528946-A2C2-40A4-9249-8641AEF37E16"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.8.3:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F012B06C-6E5E-42B2-80FC-C4AA2D9B4838"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.8.4:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4A57510-F5C8-4E62-B731-F644D289C2CD"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.8.5:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C63DEA64-2E8F-43B7-9C44-A645D6CF2099"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.8.6:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C03AB33-96FA-4586-97DE-0A11A09AACBB"
          },
          {
            "criteria": "cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:0.8.7:*:*:*:*:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BC6468DE-B43D-4943-B2B7-507B90669D78"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
