CVE-2009-2851
published 2009-08-18CVE-2009-2851: Cross-site scripting (XSS) vulnerability in the administrator interface in WordPress before 2.8.2 allows remote attackers to inject arbitrary web script or…
PriorityP425medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
7.90%
94.0th percentile
Cross-site scripting (XSS) vulnerability in the administrator interface in WordPress before 2.8.2 allows remote attackers to inject arbitrary web script or HTML via a comment author URL.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | wordpress | < wordpress 2.8.3-1 (bookworm) | wordpress 2.8.3-1 (bookworm) |
| wordpress | wordpress | <= 2.8.1 | — |
| wordpress | wordpress | >= 0 < 2.8.3-1 | 2.8.3-1 |
| wordpress | wordpress | >= 0 < 2.8.3-1 | 2.8.3-1 |
| wordpress | wordpress | >= 0 < 2.8.3-1 | 2.8.3-1 |
| wordpress | wordpress | >= 0 < 2.8.3-1 | 2.8.3-1 |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
osv4.3MEDIUM
vendor_debian4.3LOW
vendor_redhat4.3MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
WordPress: XSS via unescaped HTML URLs as author comments in the admin page
vendor_redhat·2009-02-20·CVSS 4.3
CVE-2009-2851 [MEDIUM] CWE-79 WordPress: XSS via unescaped HTML URLs as author comments in the admin page
WordPress: XSS via unescaped HTML URLs as author comments in the admin page
Cross-site scripting (XSS) vulnerability in the administrator interface in WordPress before 2.8.2 allows remote attackers to inject arbitrary web script or HTML via a comment author URL.
Debian
CVE-2009-2851: wordpress - Cross-site scripting (XSS) vulnerability in the administrator interface in WordP...
vendor_debian·2009·CVSS 4.3
CVE-2009-2851 [MEDIUM] CVE-2009-2851: wordpress - Cross-site scripting (XSS) vulnerability in the administrator interface in WordP...
Cross-site scripting (XSS) vulnerability in the administrator interface in WordPress before 2.8.2 allows remote attackers to inject arbitrary web script or HTML via a comment author URL.
Scope: local
bookworm: resolved (fixed in 2.8.3-1)
bullseye: resolved (fixed in 2.8.3-1)
forky: resolved (fixed in 2.8.3-1)
sid: resolved (fixed in 2.8.3-1)
trixie: resolved (fixed in 2.8.3-1)
GHSA
GHSA-9q3x-8xjm-8642: Cross-site scripting (XSS) vulnerability in the administrator interface in WordPress before 2
ghsa_unreviewed·2022-05-02
CVE-2009-2851 [MEDIUM] CWE-79 GHSA-9q3x-8xjm-8642: Cross-site scripting (XSS) vulnerability in the administrator interface in WordPress before 2
Cross-site scripting (XSS) vulnerability in the administrator interface in WordPress before 2.8.2 allows remote attackers to inject arbitrary web script or HTML via a comment author URL.
OSV
CVE-2009-2851: Cross-site scripting (XSS) vulnerability in the administrator interface in WordPress before 2
osv·2009-08-18·CVSS 4.3
CVE-2009-2851 [MEDIUM] CVE-2009-2851: Cross-site scripting (XSS) vulnerability in the administrator interface in WordPress before 2
Cross-site scripting (XSS) vulnerability in the administrator interface in WordPress before 2.8.2 allows remote attackers to inject arbitrary web script or HTML via a comment author URL.
No detection rules found.
Bugzilla
CVE-2009-3641 Snort: DoS (crash) while printing specially-crafted IPv6 packet using the -v option
bugzilla·2009-10-25·CVSS 4.3
CVE-2009-3641 [MEDIUM] CVE-2009-3641 Snort: DoS (crash) while printing specially-crafted IPv6 packet using the -v option
CVE-2009-3641 Snort: DoS (crash) while printing specially-crafted IPv6 packet using the -v option
Snort upstream has released 2.8.5.1 version,
addressing one security issue (from upstream release notes):
* Fixed potential segfault when printing IPv6 packets using the -v option.
Thanks to Laurent Gaffie for reporting this issue.
References:
http://vrt-sourcefire.blogspot.com/2009/10/snort-2851-release.html
http://www.snort.org/downloads
http://secunia.com/advisories/37135/
PoC: http://seclists.org/fulldisclosure/2009/Oct/299
----
Credit:
Laurent Gaffié
CVE Request:
http://www.openwall.com/lists/oss-security/2009/10/25/3
Discussion:
This issue might potentially affect the versions of the Snort package,
as shipped with Fedora releases of 10 and 11.
Dennis, please check and fix.
---
Bugzilla
CVE-2009-2851 WordPress: XSS via unescaped HTML URLs as author comments in the admin page
bugzilla·2009-07-21·CVSS 4.3
CVE-2009-2851 [MEDIUM] CVE-2009-2851 WordPress: XSS via unescaped HTML URLs as author comments in the admin page
CVE-2009-2851 WordPress: XSS via unescaped HTML URLs as author comments in the admin page
From WordPress blog:
WordPress 2.8.2 fixes an XSS vulnerability. Comment author URLs
were not fully sanitized when displayed in the admin. This could
be exploited to redirect you away from the admin to another site.
References:
http://wordpress.org/development/2009/07/wordpress-2-8-2/
http://bugs.gentoo.org/show_bug.cgi?id=278492
Note: Please be sure to mention CVE identifier in the WordPress's
rpm Changelog when scheduling Fedora updates / addressing this
flaw.
Discussion:
Is there already a CVE identifier assigned? Should I wait with the update until there is a CVE identifier available?
---
CVE for this issue was requested here:
http://www.openwall.com/lists/oss-security/2009/07/21/1
Would
http://bugs.gentoo.org/show_bug.cgi?id=278492http://securitytracker.com/id?1022589http://wordpress.org/development/2009/07/wordpress-2-8-2/http://www.debian.org/security/2009/dsa-1871http://www.openwall.com/lists/oss-security/2009/07/21/1https://bugzilla.redhat.com/show_bug.cgi?id=512900https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01241.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-July/msg01253.htmlhttp://bugs.gentoo.org/show_bug.cgi?id=278492http://securitytracker.com/id?1022589http://wordpress.org/development/2009/07/wordpress-2-8-2/http://www.debian.org/security/2009/dsa-1871http://www.openwall.com/lists/oss-security/2009/07/21/1https://bugzilla.redhat.com/show_bug.cgi?id=512900https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01241.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-July/msg01253.html
2009-08-18
Published