CVE-2011-3841 (wp_symposium)
-
Cross-site scripting (XSS) vulnerability in uploadify/get_profile_avatar.php in the WP Symposium plugin before 11.12.08 for WordPress allows remote attackers to inject arbitrary web script or HTML via the uid parameter.
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3841
© Lightnetics 2024