Wordpress Comment Field HTML Injection Vulnerability

Bugtraq ID:	24183
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	May 28 2007 12:00AM
Updated:	May 28 2007 10:21PM
Credit:	PsychoGun is credited with the discovery of this vulnerability.
Vulnerable:	WordPress WordPress 2.1.3 WordPress WordPress 2.1.3 WordPress WordPress 2.1.2 WordPress WordPress 2.1.1 WordPress WordPress 2.0.10 WordPress WordPress 2.0.7 WordPress WordPress 2.0.6 WordPress WordPress 2.0.5 WordPress WordPress 2.0.4 WordPress WordPress 2.0.3 WordPress WordPress 2.0.2 WordPress WordPress 2.0.1 WordPress WordPress 2.2 Revision 5003 WordPress WordPress 2.2 Revision 5002 WordPress WordPress 2.1.3-RC2 WordPress WordPress 2.1.3-RC1 WordPress WordPress 2.0.10-RC2 WordPress WordPress 2.0.10-RC1
Not Vulnerable:

Wordpress Comment Field HTML Injection Vulnerability

WordPress is prone to an HTML-injection scripting vulnerability because the application fails to properly sanitize user-supplied input.

Attacker-supplied HTML and script code would execute in the context of the affected site, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user; other attacks are also possible.

Wordpress Comment Field HTML Injection Vulnerability

Attackers can use a browser to exploit this issue.

Wordpress Comment Field HTML Injection Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].

Wordpress Comment Field HTML Injection Vulnerability

References:

• WordPress Article HTML Injection (PsychoGun)
  
• Wordpress church_admin Plugin "id" Cross-Site Scripting Vulnerability (Sammy Forgit)